Presentation is loading. Please wait.

Presentation is loading. Please wait.

OSG RA plans Doug Olson, LBNL May 2006. 2 Contents RA, agent, sponsor layout & OU=People use case Sample web form Agent Role GridAdmin Role Questions.

Published byJasmin Wood Modified over 8 years ago

Similar presentations

Presentation on theme: "OSG RA plans Doug Olson, LBNL May 2006. 2 Contents RA, agent, sponsor layout & OU=People use case Sample web form Agent Role GridAdmin Role Questions."— Presentation transcript:

1 OSG RA plans Doug Olson, LBNL May 2006

2 2 Contents RA, agent, sponsor layout & OU=People use case Sample web form Agent Role GridAdmin Role Questions Schedule

3 3 1.Subscriber requests Certificate 2.RM posts signing request notice 3.The RA for the Subscriber retrieves request 4.The RA agent reviews request with Grid project 5.The agent updates/approves/rejects request 6.Approved Certificate Request is sent to CM Grid Classic PKI People Certificate Workflow Subscriber 1 2 Registration Authority (RA) Agent 3 4 7 8 9 7.CM issues certificate 8.RM sends Email notice to Subscriber 9.Subscriber picks up new certificate 2 Sponsor Project DBMS 4 5 6 Certificate Manager (CM) (Certificate Signing Engine) Registration Manager (RM) PKI1.DOEGrids.Org CA

4 4 2. notify OSG RA Layout CDF CMS DES DOSAR DZero Fermilab fMRI GADU geant4 GLOW GRASE GridChem GridEx GROW i2u2 iVDGL LIGO mariachi MIS nanoHUB SDSS STAR USATLAS DOEGrids CA 1 Registration Manager Registered VOs Registered Support Centers CSC DOSAR DZero Fermilab fGOC GADU GRASE GROW-GOC LIGO mariach-support OSG-GOC PROD_SLAC SDSS STAR TACC UC CI USATLAS USCMS VDT Agents within each support center know which VOs and sites they support Subscriber Sponsor Certificate 10. download 4.c verify4.d reply 4.e. confirm or deny 5. approve or reject request 1. submit Subscriber chooses one of the existing OSG registered VOs Draft 19 Apr 2006 Typical use case for personal certificate. 3. retrieve request 4.b authenticate 7. 6. 2,8. notify VO sponsor DB 4.a check authorized sponsors RA Log 9. Record RA actions

5 5 Example request web form Subscriber chooses OSG RA and then selects their VO. Agents seen an email notification with “OSG - ” in the subject line, where is one from the list. Sponsor is a hint to the agent for where to find an actual sponsor. Subscriber should put a meaningful description in the comment field about why the need a certificate.

6 6 Agent Authorization

7 7 Authorization for GridAdmin

8 8 Questions What about people not members of one of the existing VOs? What about OU=Services requests? –Require specifying domain name of server along with RA affiliation, to include in subject line of email notification Current style example: (email subject, request DN) [doesg-ra] DOEGrids CA - OSG Certificate Request in Queue (request id: NNNNN) CN=http/bandicoot.uits.indiana.edu,OU=Services,DC=doegrids,DC=org. Would become: [doesg-ra] DOEGrids CA - OSG uits.indiana.edu Certificate Request in Queue (request id: NNNNN)

9 9 OSG RA Schedule Addition of OSG RA policy expected soon (Friday?) OSG RA functioning by July 1 Establishing agents in Support Centers will proceed as practical

Download ppt "OSG RA plans Doug Olson, LBNL May 2006. 2 Contents RA, agent, sponsor layout & OU=People use case Sample web form Agent Role GridAdmin Role Questions."

Similar presentations

OSG PKI RA Training Mine Altunay, Jim Basney OSG PKI Team October 1, 2012.

OSG PKI RA Training Mine Altunay, Jim Basney OSG PKI Team October 1, 2012.
Open Science Grid Use of PKI: Wishing it was easy A brief and incomplete introduction. Doug Olson, LBNL PKI Workshop, NIST 5 April 2006 www.opensciencegrid.org.

Open Science Grid Use of PKI: Wishing it was easy A brief and incomplete introduction. Doug Olson, LBNL PKI Workshop, NIST 5 April
Open Science Grid Use of PKI: Wishing it was easy A brief and incomplete introduction. Doug Olson, LBNL PKI Workshop, NIST 5 April 2006.

Open Science Grid Use of PKI: Wishing it was easy A brief and incomplete introduction. Doug Olson, LBNL PKI Workshop, NIST 5 April 2006.
Summer School Certificates Diego Romano & Gilda Team.

Summer School Certificates Diego Romano & Gilda Team.
Getting grid-enabled Steps involved: personal grid certificate  Request a certificate from:

Getting grid-enabled Steps involved: personal grid certificate  Request a certificate from:
Develop a Classical Group Management Site using Drupal Commons By Muhammad Iqbal.

Develop a Classical Group Management Site using Drupal Commons By Muhammad Iqbal.
Overview What are the provisioning methods used in the Australian registry system? How are these provisioning systems secured?

Overview What are the provisioning methods used in the Australian registry system? How are these provisioning systems secured?
Trading Grid Company Registration Wells Fargo Capital Finance.

Trading Grid Company Registration Wells Fargo Capital Finance.
OSG PKI Grid Admin (GA) Training Mine Altunay, Jim Basney OSG PKI Team October 8, 2012.

OSG PKI Grid Admin (GA) Training Mine Altunay, Jim Basney OSG PKI Team October 8, 2012.
CILogon OSG CA Mine Altunay Jim Basney TAGPMA Meeting Pittsburgh May 27, 2015.

CILogon OSG CA Mine Altunay Jim Basney TAGPMA Meeting Pittsburgh May 27, 2015.
Company Confidential Info Exchange Workflow Examples for External Users: Submittals Company Confidential.

Company Confidential Info Exchange Workflow Examples for External Users: Submittals Company Confidential.
VOX Project Status T. Levshina. Talk Overview VOX Status –Registration –Globus callouts/Plug-ins –LRAS –SAZ Collaboration with VOMS EDG team Preparation.

VOX Project Status T. Levshina. Talk Overview VOX Status –Registration –Globus callouts/Plug-ins –LRAS –SAZ Collaboration with VOMS EDG team Preparation.
Sympa Mailing List Server

Sympa Mailing List Server
Faculty Center for Instructors Roles and Access Faculty Center Features Grade Changes and Approval.

Faculty Center for Instructors Roles and Access Faculty Center Features Grade Changes and Approval.
May 8, 20071/15 VO Services Project – Status Report Gabriele Garzoglio VO Services Project – Status Report Overview and Plans May 8, 2007 Computing Division,

May 8, 20071/15 VO Services Project – Status Report Gabriele Garzoglio VO Services Project – Status Report Overview and Plans May 8, 2007 Computing Division,
DataGrid WP6 CA meeting, CERN, 12 December 2002 IISAS Certification Authority Jan Astalos Department of Parallel and Distributed Computing Institute of.

DataGrid WP6 CA meeting, CERN, 12 December 2002 IISAS Certification Authority Jan Astalos Department of Parallel and Distributed Computing Institute of.
Computing Division Helpdesk Activity Report Rick Thies May 23, 2006.

Computing Division Helpdesk Activity Report Rick Thies May 23, 2006.
Evolution of the Open Science Grid Authentication Model Kevin Hill Fermilab OSG Security Team.

Evolution of the Open Science Grid Authentication Model Kevin Hill Fermilab OSG Security Team.
Report by the Open Science Grid Council Subcommittee to Address At- Large VO Representation on the Consortium Council Shaowen Wang (on behalf of the committee)

Report by the Open Science Grid Council Subcommittee to Address At- Large VO Representation on the Consortium Council Shaowen Wang (on behalf of the committee)
OSG site utilization by VOs Ilya Narsky, Caltech.

OSG site utilization by VOs Ilya Narsky, Caltech.

Similar presentations

Ads by Google