Re: [HTCondor-users] Forwarding Kerberos-Credentials

[FB <fbo2@xxxxxxx>]

Hi Chrostoph,

----- UrsprÃngliche Mail -----
> Von: "Beyer, Christoph" <christoph.beyer@xxxxxxx>
> An: "htcondor-users" <htcondor-users@xxxxxxxxxxx>
> Gesendet: Freitag, 20. Oktober 2017 11:55:55
> Betreff: Re: [HTCondor-users] Forwarding Kerberos-Credentials

> Hi Frank,
> 
> the feature was originally developed for usage at CERN and during the last year
> the HTCondor team was kind enough to develop it a bit further with our
> aid/input to make it usuable for other sites to.

Nice - I'm going to use the stuff that discovered a boson :-) .

> We are currently using it with full KRB/AFS integration on a pilot cluster that
> is upposed to be our main 'local' batch facility with > 6.000 cores by the mid
> of next year.

We have some sensitive data in AFS as well. My main goal is to enable
NFSv4/gssapi access but AFS would be a really cool bonus.

> Though the implementation is now more or less vanilla getting it started
> involves a bit more than just editing config files.
>
> If you like I can give you more details and guide you through the process of
> getting it up and running as I opted for writing a recipe later anyway ....

I'd love that. Are there some exotic requirements regarding the environment - i.e.
a specific Kerberos flavor? We do have MIT kerberos here.

Best,

Frank