Installation des Globus Toolkit

Aus Wiki
Wechseln zu: Navigation, Suche

Vorbereitungen

tba

Basisinstallation

Verzeichnis anlegen: 

mkdir /usr/local/globus-4.0.0

Benutzer "globus" anlegen und Verzeichnisrechte ändern: 

chown globus:globus /usr/local/globus-4.0.0

Globale Variablen setzen: 

export JAVA_HOME=/usr/local/j2sdk1.4.2_06
export GLOBUS_LOCATION=/usr/local/globus-4.0.0
export GPT_LOCATION=/usr/local/gpt-3.2 (notwendig???)

Konfiguration: 

./configure --prefix=$GLOBUS_LOCATION
make
make install

Certificate Authority Setup

??? 

$GLOBUS_LOCATION/sbin/gpt-postinstall

CA erstellen 

$GLOBUS_LOCATION/globus/setup/setup_simple_ca
  • subject zustimmen
  • email eingeben
  • gültigkeit des ca eingeben
  • PEM parse: z.B. a13b5c7

Result: 

/user/.globus/simpleSA/

$GLOBUS_LOCATION/setup/globus_simple_ca_CA_Hash_setup/setup-gsi -default

Result: 

---

Host-Zertifikat erstellen 

$GLOBUS_LOCATION/bin/grid-cert-request -host 'http://schwatke.homelinux.org'

Result: 

root@wickie /etc/grid-security>ls
total 24
lrwxrwxrwx  1 root root   60 Jun  1 14:30 grid-security.conf ->   /etc/grid-security/certificates//grid-security.conf.6493cff3
lrwxrwxrwx  1 root root   62 Jun  1 14:30 globus-user-ssl.conf -> /etc/grid-security/certificates//globus-user-ssl.conf.6493cff3
lrwxrwxrwx  1 root root   62 Jun  1 14:30 globus-host-ssl.conf -> /etc/grid-security/certificates//globus-host-ssl.conf.6493cff3
drwxr-xr-x  2 root root 4096 Jun  1 14:30 certificates
-r--------  1 root root  887 Jun  1 14:32 hostkey.pem
-rw-r--r--  1 root root 1396 Jun  1 14:32 hostcert_request.pem
-rw-r--r--  1 root root    0 Jun  1 14:32 hostcert.pem

Sign Zertifikat 

$GLOBUS_LOCATION/bin>./grid-ca-sign -in /etc/grid-security/hostcert_request.pem -out /etc/grid-security/hostsigned.pem
  • CA password: a13b5c7

User-Zertifikat erstellen 

$GLOBUS_LOCATION/bin/grid-cert-request
  • Name
  • PEM z.B. a13b5c7

Result: 

root@wickie ~/.globus>ls
total 16
drwxr-xr-x  2 root root 4096 Jun  1 14:20 xxx
drwx------  6 root root 4096 Jun  1 14:38 simpleCA
-rw-r--r--  1 root root    0 Jun  1 14:43 usercert.pem
-r--------  1 root root  963 Jun  1 14:44 userkey.pem
-rw-r--r--  1 root root 1375 Jun  1 14:44 usercert_request.pem

Sign Zertifikat: 

 $GLOBUS_LOCATION/bin>./grid-ca-sign -in /root/.globus/usercert_request.pem -out /root/.globus/usercert.pem
  • Password CA

Testing: 

$GLOBUS_LOCATION/bin/grid-proxy-init -debug -verify
  • GRID: a13b5c7

Mögliches Problem: 

grid-proxy-init: error while loading shared libraries: 
> libglobus_gsi_proxy_core_gcc32dbg.so.0: 
> cannot open shared object file: No such file or directory

Lösung: 

export LD_LIBRARY_PATH=$GLOBUS_LOCATION/lib

CA eines anderen Rechner verwenden

  • .globus/simpleCA/.globus_simple_ca_HASH_setup-0.17.tar.gz aus dem Benutzer-Verzeichnis holen
$GLOBUS_LOCATION/sbin/gpt-build globus_simple_ca_HASH_setup-0.17.tar.gz gcc32dbg

/usr/local/globus-4.0.0/setup/globus_simple_ca_6493cff3_setup # ./setup-gsi -default

Testing 

 ....

Ersten Job abschicken

Abgerufen von „https://wiki.schwatke.de/index.php?title=Installation_des_Globus_Toolkit&oldid=1409