OSG RA plans Doug Olson, LBNL May 2006. 2 Contents RA, agent, sponsor layout & OU=People use case Sample web form Agent Role GridAdmin Role Questions.

Slides:



Advertisements
Similar presentations
OSG PKI RA Training Mine Altunay, Jim Basney OSG PKI Team October 1, 2012.
Advertisements

Open Science Grid Use of PKI: Wishing it was easy A brief and incomplete introduction. Doug Olson, LBNL PKI Workshop, NIST 5 April
Open Science Grid Use of PKI: Wishing it was easy A brief and incomplete introduction. Doug Olson, LBNL PKI Workshop, NIST 5 April 2006.
Summer School Certificates Diego Romano & Gilda Team.
Getting grid-enabled Steps involved: personal grid certificate  Request a certificate from:
Develop a Classical Group Management Site using Drupal Commons By Muhammad Iqbal.
Overview What are the provisioning methods used in the Australian registry system? How are these provisioning systems secured?
Trading Grid Company Registration Wells Fargo Capital Finance.
OSG PKI Grid Admin (GA) Training Mine Altunay, Jim Basney OSG PKI Team October 8, 2012.
CILogon OSG CA Mine Altunay Jim Basney TAGPMA Meeting Pittsburgh May 27, 2015.
Company Confidential Info Exchange Workflow Examples for External Users: Submittals Company Confidential.
VOX Project Status T. Levshina. Talk Overview VOX Status –Registration –Globus callouts/Plug-ins –LRAS –SAZ Collaboration with VOMS EDG team Preparation.
Sympa Mailing List Server
Faculty Center for Instructors Roles and Access Faculty Center Features Grade Changes and Approval.
May 8, 20071/15 VO Services Project – Status Report Gabriele Garzoglio VO Services Project – Status Report Overview and Plans May 8, 2007 Computing Division,
DataGrid WP6 CA meeting, CERN, 12 December 2002 IISAS Certification Authority Jan Astalos Department of Parallel and Distributed Computing Institute of.
Computing Division Helpdesk Activity Report Rick Thies May 23, 2006.
Evolution of the Open Science Grid Authentication Model Kevin Hill Fermilab OSG Security Team.
Report by the Open Science Grid Council Subcommittee to Address At- Large VO Representation on the Consortium Council Shaowen Wang (on behalf of the committee)
OSG site utilization by VOs Ilya Narsky, Caltech.
KISTI Grid CA Operation KISTI Supercomputing Center Sangwan Kim, Soonwook Hwang CA Operators Contact: Jan. 8, 2007.
Faculty Center for Instructors and Roster Contacts Roles and Access Faculty Center Features Grade Changes and Approval.
OSG PKI Transition: Transition Phase Report Von Welch OSG PKI Transition Lead Indiana University Center for Applied Cybersecurity Research.
Academia Sinica Grid Computing Certification Authority (ASGCCA) Jinny Chien.
Open Science Grid Open Science Grid: Beyond the Honeymoon Dane Skow Fermilab September 1, 2005.
VO management: Progress since Chicago Workshop Vincenzo Ciaschini 23/5/2002 CNAF – Bologna.
LIGO's Evolving Certificate Authority and Account Management Needs Warren G. Anderson University of Wisconsin-Milwaukee LIGO Scientific Collaboration.
Opensciencegrid.org User Support in/and OSG Doug Olson, LBNL 2 nd EGEE/LCG Operations Workshop CNR, Bologna 25 May 2005.
Open Science Grid Security Activities Mine Altunay, FNAL OSG Security Officer For the OSG Security Team: Doug Olson, Deputy Security Officer, LBNL, Jim.
OSG RA, DOEGrids CA features Doug Olson, LBNL August 2006.
VO Membership Registration Workflow, Policies and VOMRS software (VOX Project) Tanya Levshina Fermilab.
DTI Mission – 29 June LCG Security Ian Neilson LCG Security Officer Grid Deployment Group CERN.
INDIANAUNIVERSITYINDIANAUNIVERSITY Fall 2002 HEPN Working Group Goal #8 Update Grid Operations Center James Williams Indiana University
Virtual Organization Membership Service eXtension (VOX) Ian Fisk On behalf of the VOX Project Fermilab.
Operations Activity Doug Olson, LBNL Co-chair OSG Operations OSG Council Meeting 3 May 2005, Madison, WI.
Open Science Grid: Beyond the Honeymoon Dane Skow Fermilab October 25, 2005.
OSG Deployment Preparations Status Dane Skow OSG Council Meeting May 3, 2005 Madison, WI.
Student Tutorial. Wait listing is the process by which students sign up for a class that is full  Students will be notified when a seat becomes available.
VOX Project Tanya Levshina. 05/17/2004 VOX Project2 Presentation overview Introduction VOX Project VOMRS Concepts Roles Registration flow EDG VOMS Open.
The GRIDS Center, part of the NSF Middleware Initiative Grid Security Overview presented by Von Welch National Center for Supercomputing.
Opensciencegrid.org Operations Interfaces and Interactions Rob Quick, Indiana University July 21, 2005.
11 Spring 2016 Update New Features and Functionality APRIL 2016.
Gilda certificates. Certification Authority
Sick Leave Attestation Process.
OSG Security: Updates on OSG CA & Federated Identities Mine Altunay, PhD OSG Security Team OSG AHM March 24, 2015.
Open Science Grid Security Activities D. Olson, LBNL OSG Deputy Security Officer For the OSG Security Team: M. Altunay, FNAL, OSG Security Officer, D.O.,
VO Management Tanya Levshina Computing Division, Fermilab.
18 th EUGridPMA, Dublin / SRCE CA Self Audit SRCE CA Self Audit Emir Imamagić SRCE Croatia.
HLRmon Enrico Fattibene INFN-CNAF 1EGI-TF Lyon, France19-23 September 2011.
OSG PKI Transition Mine Altunay OSG Security Officer
Academia Sinica Grid Computing Certification Authority F2F interview (Malaysia )
Computing Division Helpdesk Activity Report Rick Thies October 10, 2006.
Certificate Security For Users Obtaining and Using Your Personal Certificate using the OSG PKI Kyle Gross – OSG Operations Support Lead Elizabeth Prout.
Registration form workflow. New registration Visitors should be directed to the following URL:
New OSG Virtual Organization Security Training OSG Security Team.
Virtual Organization Management Registration Service (VOMRS) T. Levshina J. Weigand S. White Co-Authors: L. Bauerdick, G. Carcassi, I. Fisk, A. Heavey,
Instructions for Website How to register: 1. Click “Register” under the banner 1.
Customer authorizes Enrollment ( ) 3 Customer ESI ID confirmed ( ) Yes
Declaring intent in leo
Operations Interfaces and Interactions
Open Science Grid Progress and Status
CRC exercises Not happy with the way the document for testbed architecture is progressing More a collection of contributions from the mware groups rather.
Update on EDG Security (VOMS)
How to Register on Active Orders Trading Grid Company Registration
Open Science Grid Overview
جايگاه گواهی ديجيتالی در ايران
Customer authorizes Enrollment ( ) 3 Customer ESI ID confirmed ( ) Yes
Requisition Approval Tracking Module
Process flow Kindly note: This presentation is automated – please do not click any of your mouse buttons or keyboard keys.
Presentation transcript:

OSG RA plans Doug Olson, LBNL May 2006

2 Contents RA, agent, sponsor layout & OU=People use case Sample web form Agent Role GridAdmin Role Questions Schedule

3 1.Subscriber requests Certificate 2.RM posts signing request notice 3.The RA for the Subscriber retrieves request 4.The RA agent reviews request with Grid project 5.The agent updates/approves/rejects request 6.Approved Certificate Request is sent to CM Grid Classic PKI People Certificate Workflow Subscriber 1 2 Registration Authority (RA) Agent CM issues certificate 8.RM sends notice to Subscriber 9.Subscriber picks up new certificate 2 Sponsor Project DBMS Certificate Manager (CM) (Certificate Signing Engine) Registration Manager (RM) PKI1.DOEGrids.Org CA

4 2. notify OSG RA Layout CDF CMS DES DOSAR DZero Fermilab fMRI GADU geant4 GLOW GRASE GridChem GridEx GROW i2u2 iVDGL LIGO mariachi MIS nanoHUB SDSS STAR USATLAS DOEGrids CA 1 Registration Manager Registered VOs Registered Support Centers CSC DOSAR DZero Fermilab fGOC GADU GRASE GROW-GOC LIGO mariach-support OSG-GOC PROD_SLAC SDSS STAR TACC UC CI USATLAS USCMS VDT Agents within each support center know which VOs and sites they support Subscriber Sponsor Certificate 10. download 4.c verify4.d reply 4.e. confirm or deny 5. approve or reject request 1. submit Subscriber chooses one of the existing OSG registered VOs Draft 19 Apr 2006 Typical use case for personal certificate. 3. retrieve request 4.b authenticate ,8. notify VO sponsor DB 4.a check authorized sponsors RA Log 9. Record RA actions

5 Example request web form Subscriber chooses OSG RA and then selects their VO. Agents seen an notification with “OSG - ” in the subject line, where is one from the list. Sponsor is a hint to the agent for where to find an actual sponsor. Subscriber should put a meaningful description in the comment field about why the need a certificate.

6 Agent Authorization

7 Authorization for GridAdmin

8 Questions What about people not members of one of the existing VOs? What about OU=Services requests? –Require specifying domain name of server along with RA affiliation, to include in subject line of notification Current style example: ( subject, request DN) [doesg-ra] DOEGrids CA - OSG Certificate Request in Queue (request id: NNNNN) CN=http/bandicoot.uits.indiana.edu,OU=Services,DC=doegrids,DC=org. Would become: [doesg-ra] DOEGrids CA - OSG uits.indiana.edu Certificate Request in Queue (request id: NNNNN)

9 OSG RA Schedule Addition of OSG RA policy expected soon (Friday?) OSG RA functioning by July 1 Establishing agents in Support Centers will proceed as practical

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.