Project

General

Profile

Support #22413

Possible wrong SEC_DEFAULT_AUTHENTICATION_METHODS line in the condor config for the frontend

Added by Marco Mambelli about 1 month ago.

Status:
New
Priority:
Normal
Category:
-
Target version:
Start date:
04/18/2019
Due date:
% Done:

0%

Estimated time:
Stakeholders:
Duration:

Description

There seems to be a wrong SEC_DEFAULT_AUTHENTICATION_METHODS line in the condor config for the frontend.

# grep SEC_DEFAULT_AUTHENTICATION_METHODS /var/lib/gwms-frontend/vofrontend/frontend.condor_config
SEC_DEFAULT_AUTHENTICATION_METHODS = FS,PASSWORD,GSI
SEC_DEFAULT_AUTHENTICATION_METHODS = GSI
<pre>
Thos second line overrides the line created form the configuration on the frontend host, forcing only GSI and blocking other methods.
But somehow a schedd using only PASSWORD authentication seems to be queried correctly and trigger glideins.

1. Why was that line added?
2. Should it be removed?
3. Why PASSWORD auth seems to work anyway?



Also available in: Atom PDF