Re: [Condor-users] Running as specific windows user

[Matt Hope <matthew.hope@xxxxxxxxx>]

On Mon, 21 Mar 2005 14:07:06 -0500, Gooding, Stephen L
<goodings@xxxxxxxxxx> wrote:
> 
> 
> Hi,
> 
>  
> 
> I have been reading the docs and looking into information regarding condor
> running as user other than "nobody" and I am wondering if someone could
> point me in the right direction. I haven't been able to get all the
> information that I need, and I have a feeling that this is fairly
> straightforward.
> 
>  
> 
> We are submitting the job from a UNIX box and the execute node will be a
> windows machine. The execute node needs to run the job as a specific
> user/group (studio3d) that has read/write access to a shared file server.
> Studio3d already exists with the proper permissions on the storage drive.
> 
>  
> 
> How can I have condor execute as studio3d? Is there a better way to do this?

never tried this but it should work:

1) change the config for the machine (to be more exact for every
virtual machine)

## Specify a specific nobody account to run jobs as. This only applies
## to instances where we normally run as nobody, and we'd like to run
## as some other user. On Windows, this user's password must be stored
## in the local password stash, or the starter will default on the
## condor-reuse-vmX account.
VM1_USER = DOMAIN\studio3d
VM2_USER = DOMAIN\studio3d

etc...

Then
2) on the execute machine run condor_store_cred to add the users
credentials (any time this changes you will have to redo this).

In theory this will work but it means ANY job running on that machine
will be this user so make sure that this is ok (or set up a different
vm for each user you need and ensure that only certain users jobs will
run on the machine)

I've never used this myself so FWIW...YMMV...EOE...etc etc

Matt