Difference between revisions of "Secure Infrastructure Deployment"

From D4Science Wiki
Jump to: navigation, search
(GHNs and Tomcats)
 
(7 intermediate revisions by the same user not shown)
Line 9: Line 9:
 
** Debian/Ubuntu : apt-get install fetch-crl
 
** Debian/Ubuntu : apt-get install fetch-crl
  
==  GHNs and Services ==
+
==  GHNs and Tomcats ==
  
 
{| border="1" cellpadding="4" cellspacing="0"
 
{| border="1" cellpadding="4" cellspacing="0"
Line 16: Line 16:
 
|-
 
|-
 
! bgcolor="lightgrey" align="center" colspan="4"|CNR
 
! bgcolor="lightgrey" align="center" colspan="4"|CNR
|-
 
|-
 
| node1.tsec.d4science.research-infrastructures.eu:8443  || VO  || secureVO        || SOA3
 
 
|-
 
|-
 
| node2.tsec.d4science.research-infrastructures.eu:8443  || VO  || secureVO        || IS-IC
 
| node2.tsec.d4science.research-infrastructures.eu:8443  || VO  || secureVO        || IS-IC
 
|-  
 
|-  
| node3.tsec.d4science.research-infrastructures.eu:8443  || VO  || Ecosystem       || IS-Registry/IS-Notifier
+
| node3.tsec.d4science.research-infrastructures.eu:8443  || VO  || secureVO       || IS-Registry/IS-Notifier
 
|-  
 
|-  
| node4.tsec.d4science.research-infrastructures.eu:8443  || VO  || Ecosystem       || Resource Manager  
+
| node4.tsec.d4science.research-infrastructures.eu:8443  || VO  || secureVO       || Resource Manager  
  
 
|}
 
|}
  
 +
 +
{| border="1" cellpadding="4" cellspacing="0"
 +
|-
 +
! width="400"|Tomcat !! width="75"|Scope !! width="150"|VO/VRE  !! width="300"|Services
 +
|-
 +
! bgcolor="lightgrey" align="center" colspan="4"|CNR
 +
|-
 +
| node1.tsec.d4science.research-infrastructures.eu:8080  || VO  || secureVO        || SOA3
 +
|-
 +
| shibboleth-idp.tsec.d4science.research-infrastructures.eu:8080  || VO  || secureVO        || Shibboleth-IDP , ARGUS
 +
|-
 +
| shibboleth-sp.tsec.d4science.research-infrastructures.eu:8080 || VO  || secureVO        || Shibboleth-SP
 +
|-
 +
| portal.tsec.d4science.research-infrastructures.eu:8080  || VO  || secureVO        || Portal
 +
|}
 
<br><br>
 
<br><br>

Latest revision as of 16:57, 27 January 2014

Secure Node configuration

In order to deploy a "secure" node on the infrastructure the following steps are needed:

  • Installation of an host certificate ( by default under /etc/grid-security)
  • EGI TrustAnchor installation ( https://wiki.egi.eu/wiki/EGI_IGTF_Release)
  • fetch-crl command installation:
    • Redhat via yum : yum install fetch-crl
    • Debian/Ubuntu : apt-get install fetch-crl

GHNs and Tomcats

gHN Scope VOVirtual Organization;/VREVirtual Research Environment. Services
CNR
node2.tsec.d4science.research-infrastructures.eu:8443 VOVirtual Organization; secureVO IS-IC
node3.tsec.d4science.research-infrastructures.eu:8443 VOVirtual Organization; secureVO IS-Registry/IS-Notifier
node4.tsec.d4science.research-infrastructures.eu:8443 VOVirtual Organization; secureVO Resource Manager
Tomcat Scope VOVirtual Organization;/VREVirtual Research Environment. Services
CNR
node1.tsec.d4science.research-infrastructures.eu:8080 VOVirtual Organization; secureVO SOA3
shibboleth-idp.tsec.d4science.research-infrastructures.eu:8080 VOVirtual Organization; secureVO Shibboleth-IDP , ARGUS
shibboleth-sp.tsec.d4science.research-infrastructures.eu:8080 VOVirtual Organization; secureVO Shibboleth-SP
portal.tsec.d4science.research-infrastructures.eu:8080 VOVirtual Organization; secureVO Portal