[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [HTCondor-users] jobs getting run as nobody

From: John M Knoeller <johnkn@xxxxxxxxxxx>
Date: 02/10/2016 10:46 AM
> Did You have

> On the execute side?

Speaking of which, is there a "starter_REQUIRE_runas_owner" knob? Under classified information systems every action on a system must be accountable to the individual who took the action, and thus far that's been easiest to accomplish by having jobs on exec nodes run under the submitters' accounts.

I've been using a system periodic hold based on runas_owner=false in the job ClassAd to enforce that, but if there's an easier way I haven't found it yet.

        -Michael Pelletier.