Project

General

Profile

Support #23278

Feature #23092: Use token-auth for Glideins authentication and add support for sci-token

Condor 8.9.2 configuration changes

Added by Dennis Box about 1 month ago. Updated about 1 month ago.

Status:
New
Priority:
Normal
Assignee:
Category:
Configuration Management
Target version:
-
Start date:
09/16/2019
Due date:
% Done:

0%

Estimated time:
Stakeholders:
Duration:

Description

Condor 8.9.2 (development series) has quite a few security and authentication changes from the 8.8 series.
Assuming you are using FS,GSI authentication, upgrading a GWMS using condor 8.8.5 or earlier to condor 8.9.2 requires the following configuration steps:
  • easiest install of condor 8.9.2 at the time of creation of this ticket:
  • frontend needs two new ALLOW_ settings
    • ALLOW_READ = * yum install --enablerepo osg-upcoming-development condor
    • ALLOW_DAEMON=$(ALLOW_WRITE)
  • the factory needs 3 ALLOW_ Settings
    • ALLOW_READ = *
    • ALLOW_DAEMON=$(ALLOW_WRITE)
    • ALLOW_ADVERTISE_MASTER = $(ALLOW_DAEMON)
  • If you are upgrading from the condor 8.6 series, you need to install glideinwms-switchboard
    • yum install glideinwms-switchboard --enablerepo=osg-development

History

#1 Updated by Dennis Box about 1 month ago

easiest install of condor 8.9.2 on a working gwms system is
  • yum install --enablerepo osg-upcoming-development condor


Also available in: Atom PDF