The certificate signed by CILogon should be stored on the computer from which TRANSP runs are submitted, in your home directory, $HOME/.globus
How to get a CILogon Certificate for TRANSP
- Go to: CILogon
- Select "Identity Provider" (IdP):
- Search for your institution in the list. For example "University of Padova", "EPFL - EPF Lausanne", "Lehigh University", "INFN - National Institute for Nuclear Physics", "Columbia University", are all listed
- PPPL employees can use the "Princeton University" account
- PSFC employees can choose "Massachusetts Institute of Technology"
- If your institution is not listed, you can login in with your "Google" or "GitHub" account.
- openssl pkcs12 -in usercred.p12 -out userkey.pem -nodes -nocerts
- openssl pkcs12 -in usercred.p12 -out usercert.pem -nodes -clcerts -nokeys
- chmod 644 usercert.pem
- chmod 400 userkey.pem
- To authenticate with the new Certificate (let's say for 264 hours) run the following command:
- grid-proxy-init -hours 264
- this command should return
- Your identity: /DC=org/DC=cilogon/C=US/O=.../CN=..user-name... ID#
- Creating proxy ........................................... Done
- Your proxy is valid until: ...Date and time..
please e-mail Marina Gorelenkova (mgorelen_at_pppl_dot_gov)
- name and email address of your sponsor (a person familiar with TRANSP and is willing to help you TRANSP runs)
- your identity: /DC=org/DC=cilogon/C=US/O=.../CN=..user-name... ID#