MyProxy Server Setup

From UGP-Wiki

Jump to: navigation, search

Globus Toolkit comes with myproxy server

In general we have to do the following thing 

   Install GLOBUS_TOOLKIT

   globus>cp $GLOBUS_LOCATION/share/myproxy/myproxy-server.config $GLOBUS_LOCATION/etc/myproxy-server.config

   root>cp $GLOBUS_LOCATION/share/myproxy/etc.initd.myproxy /etc/init.d/myproxy

   root: update /etc/services for port 7512
         add the following line to the end of the file: myproxy-server  7512/tcp



   globus>/etc/init.d/myproxy start



   Debug Myproxy server: $GLOBUS_LOCATION/sbin/myproxy-server -d


[edit] More Information

You should always run myproxy server as non-privilege globus user.


1. Configure myproxy script in /etc/init.d/myproxy

The following is the sample script. Please pay more attention to the variables such as CONFIG, X509_USER_CERT, X509_USER_KEY. 



#!/bin/sh
#
# SysV-style boot script for MyProxy
#
# chkconfig: 345 99 06
# description: MyProxy online credential repository

# Set GLOBUS_LOCATION as appropriate for your installation.
GLOBUS_LOCATION="/home/globus/GT4"
export GLOBUS_LOCATION

. ${GLOBUS_LOCATION}/libexec/globus-script-initializer
. ${libexecdir}/globus-sh-tools.sh

MYPROXY=${GLOBUS_LOCATION}/sbin/myproxy-server

PS="/bin/ps -e"

# Optional server configuration arguments follow.
# Uncomment and modify to change default settings.
PORT="-p 7512"
CONFIG="-c ${GLOBUS_LOCATION}/etc/myproxy-server.config"
STORE="-s ${GLOBUS_LOCATION}/var/myproxy"
#VERBOSE="-verbose"
VERBOSE="-v"

# By default, the myproxy-server uses /etc/grid-security/hostcert.pem
# and /etc/grid-security/hostkey.pem.  Uncomment and modify the
# following lines to configure the myproxy-server to find its
# certificate and key in alternate locations.
X509_USER_CERT="/etc/grid-security/containercert.pem"
X509_USER_KEY="/etc/grid-security/containerkey.pem"
export X509_USER_CERT X509_USER_KEY

case $1 in
'start')
    if [ -x $MYPROXY ]; then
        echo "Starting up MyProxy"
        $MYPROXY $PORT $CONFIG $STORE $VERBOSE
    else
        echo "$MYPROXY is not executable.  Skipping MyProxy startup."
        exit 1
    fi
    ;;

'stop')
    pid=`$PS | grep myproxy-server | grep -v grep | awk '{print $1}'`
    if [ -n "$pid" ]; then
        echo "Shutting down MyProxy"
        kill -TERM $pid
    else
        echo "MyProxy not running"
    fi
    ;;

*)
    echo "Usage: myproxy {start|stop}"
    exit 1
    ;;

esac

exit 0


2. Configure GLOBUS_LOCATION/etc/myproxy-server.config 

  default configuration is ok.

3. Start myproxy server as globus 

  /etc/init.d/myproxy start

4. Check if myproxy server is running 

  ps -elf | grep myproxy
Retrieved from "http://www.ucgrid.org/wiki/index.php/MyProxy_Server_Setup"
Personal tools