Certificate to UI: Difference between revisions

From T2B Wiki
Jump to navigation Jump to search
mNo edit summary
No edit summary
 
(4 intermediate revisions by the same user not shown)
Line 1: Line 1:
- Create a .globus directory in your home directory on the mX machines
- Create a .globus directory in your home directory on the mX machines
  mkdir .globus
  mkdir .globus
- Copy the certificate you extracted from your browser to any mX machine
- From your laptop, copy the certificate in *.p12 format to any mX machine
  scp mycert.p12 $USER@m0.iihe.ac.be:.globus/mycert.p12
  scp cert.p12 $USER@mshort.iihe.ac.be:.globus/cert.p12
- Change it to private/public keys with openssl
- Change it to private/public keys with openssl (do not replace <user> with yours, the key and cert '''must''' be named ''userkey'' & ''usercert'')
  openssl pkcs12 -nocerts -in mycert.p12 -out ~/.globus/userkey.pem
  openssl pkcs12 -nocerts -in ~/.globus/cert.p12 -out ~/.globus/userkey.pem
  openssl pkcs12 -clcerts -nokeys -in mycert.p12 -out ~/.globus/usercert.pem
  openssl pkcs12 -clcerts -nokeys -in ~/.globus/cert.p12 -out ~/.globus/usercert.pem
- Make sure they have the correct permissions
- Make sure they have the correct permissions
  chmod 400 ~/.globus/userkey.pem
  chmod 400 ~/.globus/userkey.pem
  chmod 644 ~/.globus/usercert.pem
  chmod 644 ~/.globus/usercert.pem

Latest revision as of 13:20, 3 October 2023

- Create a .globus directory in your home directory on the mX machines

mkdir .globus

- From your laptop, copy the certificate in *.p12 format to any mX machine

scp cert.p12 $USER@mshort.iihe.ac.be:.globus/cert.p12

- Change it to private/public keys with openssl (do not replace <user> with yours, the key and cert must be named userkey & usercert)

openssl pkcs12 -nocerts -in ~/.globus/cert.p12 -out ~/.globus/userkey.pem
openssl pkcs12 -clcerts -nokeys -in ~/.globus/cert.p12 -out ~/.globus/usercert.pem

- Make sure they have the correct permissions

chmod 400 ~/.globus/userkey.pem
chmod 644 ~/.globus/usercert.pem