Re: [Condor-users] GSI auth in Windows

[Todd Tannenbaum <tannenba@xxxxxxxxxxx>]

On 8/16/2012 9:01 PM, Jewell, Chris wrote:
> Hi,
>
> I've just downloaded the Windows binaries for Condor 7.8.2, and am trying to configure GSI security.  I get messages such as:
>
> *** Last 20 line(s) of file C:\condor/log/NegotiatorLog:
> 08/17/12 13:42:24 SECMAN: new session, doing initial authentication.
> 08/17/12 13:42:24 SECMAN: Auth methods: GSI
> 08/17/12 13:42:24 HANDSHAKE: in handshake(my_methods = 'GSI')
> 08/17/12 13:42:24 HANDSHAKE: handshake() - i am the client
> 08/17/12 13:42:24 HANDSHAKE: sending (methods == 32) to server
> 08/17/12 13:42:24 HANDSHAKE: server replied (method = 32)
> 08/17/12 13:42:24 AUTHENTICATE: unsupported method: 32, failing.
>
> Does this mean that the Windows version is not GSI capable?

Correct.  GSI has never been ported to Windows. If you want something 
similar on Windows, consider SSL, which also uses public key 
certificates (but doesn't do the limited proxy delegation that GSI does).

These Condor authentication methods work on Condor for Windows:

    SSL
    KERBEROS
    PASSWORD
    NTSSPI
    CLAIMTOBE
    ANONYMOUS

and these Condor authentication methods do not work on Windows:

    GSI
    FS
    FS_REMOTE

Hope this helps,
Todd


> Thanks,
>
> Chris
>
> --
> Dr Chris Jewell
> Massey University
> Private Bag 11222
> Palmerston North 4442
> New Zealand
>
>
> _______________________________________________
> Condor-users mailing list
> To unsubscribe, send a message to condor-users-request@xxxxxxxxxxx with a
> subject: Unsubscribe
> You can also unsubscribe by visiting
> https://lists.cs.wisc.edu/mailman/listinfo/condor-users
>
> The archives can be found at:
> https://lists.cs.wisc.edu/archive/condor-users/


--
Todd Tannenbaum <tannenba@xxxxxxxxxxx> University of Wisconsin-Madison
Center for High Throughput Computing   Department of Computer Sciences
Condor Project Technical Lead          1210 W. Dayton St. Rm #4257
Phone: (608) 263-7132                  Madison, WI 53706-1685