Difference between revisions of "Secure Infrastructure Deployment"
From D4Science Wiki
Andrea.manzi (Talk | contribs) (Created page with "== Secure Infrastructure Deployment == In order to deploy a "secure" node on the infrastructure the following step are needed: * Installation of an host certificate ( by defaul...") |
Andrea.manzi (Talk | contribs) (→GHNs and Tomcats) |
||
| (9 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
| − | == Secure | + | == Secure Node configuration == |
| − | In order to deploy a "secure" node on the infrastructure the following | + | In order to deploy a "secure" node on the infrastructure the following steps are needed: |
* Installation of an host certificate ( by default under /etc/grid-security) | * Installation of an host certificate ( by default under /etc/grid-security) | ||
| Line 8: | Line 8: | ||
** Redhat via yum : yum install fetch-crl | ** Redhat via yum : yum install fetch-crl | ||
** Debian/Ubuntu : apt-get install fetch-crl | ** Debian/Ubuntu : apt-get install fetch-crl | ||
| + | |||
| + | == GHNs and Tomcats == | ||
| + | |||
| + | {| border="1" cellpadding="4" cellspacing="0" | ||
| + | |- | ||
| + | ! width="400"|gHN !! width="75"|Scope !! width="150"|VO/VRE !! width="300"|Services | ||
| + | |- | ||
| + | ! bgcolor="lightgrey" align="center" colspan="4"|CNR | ||
| + | |- | ||
| + | | node2.tsec.d4science.research-infrastructures.eu:8443 || VO || secureVO || IS-IC | ||
| + | |- | ||
| + | | node3.tsec.d4science.research-infrastructures.eu:8443 || VO || secureVO || IS-Registry/IS-Notifier | ||
| + | |- | ||
| + | | node4.tsec.d4science.research-infrastructures.eu:8443 || VO || secureVO || Resource Manager | ||
| + | |||
| + | |} | ||
| + | |||
| + | |||
| + | {| border="1" cellpadding="4" cellspacing="0" | ||
| + | |- | ||
| + | ! width="400"|Tomcat !! width="75"|Scope !! width="150"|VO/VRE !! width="300"|Services | ||
| + | |- | ||
| + | ! bgcolor="lightgrey" align="center" colspan="4"|CNR | ||
| + | |- | ||
| + | | node1.tsec.d4science.research-infrastructures.eu:8080 || VO || secureVO || SOA3 | ||
| + | |- | ||
| + | | shibboleth-idp.tsec.d4science.research-infrastructures.eu:8080 || VO || secureVO || Shibboleth-IDP , ARGUS | ||
| + | |- | ||
| + | | shibboleth-sp.tsec.d4science.research-infrastructures.eu:8080 || VO || secureVO || Shibboleth-SP | ||
| + | |- | ||
| + | | portal.tsec.d4science.research-infrastructures.eu:8080 || VO || secureVO || Portal | ||
| + | |} | ||
| + | <br><br> | ||
Latest revision as of 16:57, 27 January 2014
Secure Node configuration
In order to deploy a "secure" node on the infrastructure the following steps are needed:
- Installation of an host certificate ( by default under /etc/grid-security)
- EGI TrustAnchor installation ( https://wiki.egi.eu/wiki/EGI_IGTF_Release)
- fetch-crl command installation:
- Redhat via yum : yum install fetch-crl
- Debian/Ubuntu : apt-get install fetch-crl
GHNs and Tomcats
| gHN | Scope | VOVirtual Organization;/VREVirtual Research Environment. | Services |
|---|---|---|---|
| CNR | |||
| node2.tsec.d4science.research-infrastructures.eu:8443 | VOVirtual Organization; | secureVO | IS-IC |
| node3.tsec.d4science.research-infrastructures.eu:8443 | VOVirtual Organization; | secureVO | IS-Registry/IS-Notifier |
| node4.tsec.d4science.research-infrastructures.eu:8443 | VOVirtual Organization; | secureVO | Resource Manager |
| Tomcat | Scope | VOVirtual Organization;/VREVirtual Research Environment. | Services |
|---|---|---|---|
| CNR | |||
| node1.tsec.d4science.research-infrastructures.eu:8080 | VOVirtual Organization; | secureVO | SOA3 |
| shibboleth-idp.tsec.d4science.research-infrastructures.eu:8080 | VOVirtual Organization; | secureVO | Shibboleth-IDP , ARGUS |
| shibboleth-sp.tsec.d4science.research-infrastructures.eu:8080 | VOVirtual Organization; | secureVO | Shibboleth-SP |
| portal.tsec.d4science.research-infrastructures.eu:8080 | VOVirtual Organization; | secureVO | Portal |
