Difference between revisions of "Secure Infrastructure Deployment"
From D4Science Wiki
Andrea.manzi (Talk | contribs) |
Andrea.manzi (Talk | contribs) (→GHNs and Tomcats) |
||
(7 intermediate revisions by the same user not shown) | |||
Line 9: | Line 9: | ||
** Debian/Ubuntu : apt-get install fetch-crl | ** Debian/Ubuntu : apt-get install fetch-crl | ||
− | == GHNs and | + | == GHNs and Tomcats == |
{| border="1" cellpadding="4" cellspacing="0" | {| border="1" cellpadding="4" cellspacing="0" | ||
Line 16: | Line 16: | ||
|- | |- | ||
! bgcolor="lightgrey" align="center" colspan="4"|CNR | ! bgcolor="lightgrey" align="center" colspan="4"|CNR | ||
− | |||
− | |||
− | |||
|- | |- | ||
| node2.tsec.d4science.research-infrastructures.eu:8443 || VO || secureVO || IS-IC | | node2.tsec.d4science.research-infrastructures.eu:8443 || VO || secureVO || IS-IC | ||
|- | |- | ||
− | | node3.tsec.d4science.research-infrastructures.eu:8443 || VO || | + | | node3.tsec.d4science.research-infrastructures.eu:8443 || VO || secureVO || IS-Registry/IS-Notifier |
|- | |- | ||
− | | node4.tsec.d4science.research-infrastructures.eu:8443 || VO || | + | | node4.tsec.d4science.research-infrastructures.eu:8443 || VO || secureVO || Resource Manager |
|} | |} | ||
+ | |||
+ | {| border="1" cellpadding="4" cellspacing="0" | ||
+ | |- | ||
+ | ! width="400"|Tomcat !! width="75"|Scope !! width="150"|VO/VRE !! width="300"|Services | ||
+ | |- | ||
+ | ! bgcolor="lightgrey" align="center" colspan="4"|CNR | ||
+ | |- | ||
+ | | node1.tsec.d4science.research-infrastructures.eu:8080 || VO || secureVO || SOA3 | ||
+ | |- | ||
+ | | shibboleth-idp.tsec.d4science.research-infrastructures.eu:8080 || VO || secureVO || Shibboleth-IDP , ARGUS | ||
+ | |- | ||
+ | | shibboleth-sp.tsec.d4science.research-infrastructures.eu:8080 || VO || secureVO || Shibboleth-SP | ||
+ | |- | ||
+ | | portal.tsec.d4science.research-infrastructures.eu:8080 || VO || secureVO || Portal | ||
+ | |} | ||
<br><br> | <br><br> |
Latest revision as of 16:57, 27 January 2014
Secure Node configuration
In order to deploy a "secure" node on the infrastructure the following steps are needed:
- Installation of an host certificate ( by default under /etc/grid-security)
- EGI TrustAnchor installation ( https://wiki.egi.eu/wiki/EGI_IGTF_Release)
- fetch-crl command installation:
- Redhat via yum : yum install fetch-crl
- Debian/Ubuntu : apt-get install fetch-crl
GHNs and Tomcats
gHN | Scope | VOVirtual Organization;/VREVirtual Research Environment. | Services |
---|---|---|---|
CNR | |||
node2.tsec.d4science.research-infrastructures.eu:8443 | VOVirtual Organization; | secureVO | IS-IC |
node3.tsec.d4science.research-infrastructures.eu:8443 | VOVirtual Organization; | secureVO | IS-Registry/IS-Notifier |
node4.tsec.d4science.research-infrastructures.eu:8443 | VOVirtual Organization; | secureVO | Resource Manager |
Tomcat | Scope | VOVirtual Organization;/VREVirtual Research Environment. | Services |
---|---|---|---|
CNR | |||
node1.tsec.d4science.research-infrastructures.eu:8080 | VOVirtual Organization; | secureVO | SOA3 |
shibboleth-idp.tsec.d4science.research-infrastructures.eu:8080 | VOVirtual Organization; | secureVO | Shibboleth-IDP , ARGUS |
shibboleth-sp.tsec.d4science.research-infrastructures.eu:8080 | VOVirtual Organization; | secureVO | Shibboleth-SP |
portal.tsec.d4science.research-infrastructures.eu:8080 | VOVirtual Organization; | secureVO | Portal |