·Requesting a Host certificate
These instructions were taken from and email from Dr. Scott Koranda and some instructions are specific to Lobizon.
Globus via the VDT then most likely GLOBUS_LOCATION
should be /vdt.
3) download the following two files (plain text) and put them in the
directory /etc/grid-security/certificates/
The permissions should be 644 and they should be owned by root and in
group root.
http://www.lsc-group.phys.uwm.edu/~skoranda/Download/9d8753eb.0
http://www.lsc-group.phys.uwm.edu/~skoranda/Download/9d8753eb.signing_policy
4) Run the following bash script as root
#!/bin/bash
${GLOBUS_LOCATION}/setup/globus/setup-gsi << EOF
y
1
ou=People,o=doesciencegrid.org
2
ou=Services,o=doesciencegrid.org
q
EOF
5) Look for files
/etc/grid-security/hostcert.pem
/etc/grid-security/hostkey.pem
If they exist rename to something else.
6) Then as root run
${GLOBUS_LOCATION}/bin/grid-cert-request -host lobizon.utb.edu
-cert /etc/grid-security/hostcert.pem -key
/etc/grid-security/hostkey.pem -req /etc/grid-security/hostcertreq.pem
-nopw
7) browse to https://pki1.doesciencegrid.org/ and click on the
"Enrollment" tab if it is not the frame that
is visable by default
8) On the left-hand side click on "Grid or SSL
server"
9) run
cat /etc/grid-security/hostcertreq.pem
At the bottom of the output you should see something like the
following:
-----BEGIN CERTIFICATE REQUEST-----
MIIBwjCCASsCAQAwgYExDTALBgNVBAoTBEdyaWQxDzANBgNVBAoTBkdsb2J
Carefully copy and paste everything including the "BEGIN" and "END"
lines into the first box in the web page. The box is labeled "PKCS #10
Request"
10) Enter your name, email, and phone number
where requested
11) In the "Additional Comments" box enter something
like this:
This is a request for a host certificate. We are part of the iVDGL
collaboration and part of the LIGO/LSC testbed. The sponsor is
Scott Koranda.
12) Then click submit and you are done.
Dr. Koranda will send and email once he approves and signs it