[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [HTCondor-users] About SEC_CREDENTIAL_DIRECTORY



Hi Ivan,

You have set SEC_CREDENTIAL_DIRECTORY but the directory does not exist.
Try

mkdir -p /etc/condor/passwords.d
condor_store_cred -u tester@tester add -d


-Mat

On 12/12/19 5:41 AM, don_vanchos wrote:
> Hey Mat,
> 
> Thanks for the answer.
> 
> I got deb fromÂhttp://research.cs.wisc.edu/htcondor/ubuntu/8.9/bionic
> 
> And the directory exists in /etc/condor :
> drwxr-xr-x 1 root root 4096 Dec 12 11:18 Âpasswords.d/
> 
> But then I use the following command and I get error:
> /etc/condor# condor_store_cred -u tester@tester add -d
> Account: tester@tester
> 
> Enter password:
> 
> 12/12/19 11:28:51 STORE_CRED: In mode 'add'
> 12/12/19 11:28:51 GOT OAUTH STORE CRED
> 12/12/19 11:28:51 OAUTH store cred user tester@tester len 7 mode 100
> 12/12/19 11:28:51 ERROR: got STORE_CRED but SEC_CREDENTIAL_DIRECTORY not defined!
> Operation failed.
> Â Â Make sure your ALLOW_WRITE setting includes this host.
> 
> So I set
> SEC_CREDENTIAL_DIRECTORY =Â$(ETC)/passwords.d
> to my condor_config and recall the command:
> 
> /etc/condor# condor_store_cred -u tester@tester add -d
> Account: tester@tester
> 
> Enter password:
> 
> 12/12/19 11:34:19 STORE_CRED: In mode 'add'
> 12/12/19 11:34:19 GOT OAUTH STORE CRED
> 12/12/19 11:34:19 OAUTH store cred user tester@tester len 7 mode 100
> 12/12/19 11:34:19 Writing user cred data to Â/etc/condor/passwords.d/tester/scitokens.top.tmp
> 12/12/19 11:34:19 ERROR: write_secure_file(Â/etc/condor/passwords.d/tester/scitokens.top.tmp): open() failed: No such file or directory (2)
> 12/12/19 11:34:19 Failed to write secure temp file Â/etc/condor/passwords.d/tester/scitokens.top.tmp
> Operation failed.
> Â Â Make sure your ALLOW_WRITE setting includes this host.
> 
> ALLOW_WRITE set to *, so could you explain this error?
> 
> P.S.
> # condor_version
> $CondorVersion: 8.9.4 Nov 18 2019 BuildID: Debian-8.9.4-1 PackageID: 8.9.4-1 Debian-8.9.4-1 $
> $CondorPlatform: X86_64-Ubuntu_18.04 $
> 
> ÑÑ, 12 ÐÐÐ. 2019 Ð. Ð 00:18, MÃtyÃs Selmeci <matyas@xxxxxxxxxxx <mailto:matyas@xxxxxxxxxxx>>:
> 
>     Hi Ivan,
> 
>     The default SEC_CREDENTIAL_DIRECTORY is "/etc/condor/passwords.d",
>     and you will need to create that by hand.
> 
>     Apologies for the obscure error; it should probably also get created by
>     default on installation. (I think it does on RPMs but not on DEBs?)
> 
>     -Mat
> 
> 
>     On 12/11/19 1:54 PM, don_vanchos wrote:
>     > Hello,
>     >
>     > My `ALLOW_WRITE` set to `*` and I cannot add a password by `condor_store_cred` command.
>     > What is SEC_CREDENTIAL_DIRECTORY?
>     >
>     >
>     > root@htcondormanager:/etc/condor/# condor_store_cred -u tester@tester add
>     > Account: tester@tester
>     >
>     > Enter password:
>     >
>     > Operation failed.
>     > Â Â Make sure your ALLOW_WRITE setting includes this host.
>     > root@htcondormanager:/etc/condor/# condor_store_cred -u tester@tester add -d
>     > Account: tester@tester
>     >
>     > Enter password:
>     >
>     > 12/11/19 19:47:58 STORE_CRED: In mode 'add'
>     > 12/11/19 19:47:58 GOT OAUTH STORE CRED
>     > 12/11/19 19:47:58 OAUTH store cred user tester@tester len 7 mode 100
>     > 12/11/19 19:47:58 ERROR: got STORE_CRED but SEC_CREDENTIAL_DIRECTORY not defined!
>     > Operation failed.
>     > Â Â Make sure your ALLOW_WRITE setting includes this host.
>     >
>     >
>     > $CondorVersion: 8.9.2 Jun 04 2019 BuildID: Debian-8.9.2-1 PackageID: 8.9.2-1 Debian-8.9.2-1 $
>     > $CondorPlatform: X86_64-Ubuntu_18.04 $
>     >
>     >
>     > --
>     > Sincerely yours,
>     > Ivan Ergunov                         mailto:hozblok@xxxxxxxxx <mailto:hozblok@xxxxxxxxx> <mailto:hozblok@xxxxxxxxx <mailto:hozblok@xxxxxxxxx>>
>     >
>     > _______________________________________________
>     > HTCondor-users mailing list
>     > To unsubscribe, send a message to htcondor-users-request@xxxxxxxxxxx <mailto:htcondor-users-request@xxxxxxxxxxx> with a
>     > subject: Unsubscribe
>     > You can also unsubscribe by visiting
>     > https://lists.cs.wisc.edu/mailman/listinfo/htcondor-users
>     >
>     > The archives can be found at:
>     > https://lists.cs.wisc.edu/archive/htcondor-users/
>     >
>     _______________________________________________
>     HTCondor-users mailing list
>     To unsubscribe, send a message to htcondor-users-request@xxxxxxxxxxx <mailto:htcondor-users-request@xxxxxxxxxxx> with a
>     subject: Unsubscribe
>     You can also unsubscribe by visiting
>     https://lists.cs.wisc.edu/mailman/listinfo/htcondor-users
> 
>     The archives can be found at:
>     https://lists.cs.wisc.edu/archive/htcondor-users/
> 
> 
> 
> -- 
> Sincerely yours,
> Ivan Ergunov                         mailto:hozblok@xxxxxxxxx <mailto:hozblok@xxxxxxxxx>
> 
> _______________________________________________
> HTCondor-users mailing list
> To unsubscribe, send a message to htcondor-users-request@xxxxxxxxxxx with a
> subject: Unsubscribe
> You can also unsubscribe by visiting
> https://lists.cs.wisc.edu/mailman/listinfo/htcondor-users
> 
> The archives can be found at:
> https://lists.cs.wisc.edu/archive/htcondor-users/
>