35 | | $ wget https://dist.eugridpma.info/distribution/igtf/current/accredited/RPMS/ca_PolishGrid-1.38-1.noarch.rpm |
36 | | $ wget http://software.plgrid.pl/packages/general/ca_PLGRID-SimpleCA-1.0-2.noarch.rpm |
37 | | $ wget https://dist.eugridpma.info/distribution/util/fetch-crl/fetch-crl-2.8.5-1.noarch.rpm |
38 | | |
39 | | # rpm -i ca_PolishGrid-1.38-1.noarch.rpm |
40 | | # rpm -i ca_PLGRID-SimpleCA-1.0-2.noarch.rpm |
41 | | |
42 | | #install certificate revocation list fetching utility |
43 | | # rpm -i fetch-crl-2.8.5-1.noarch.rpm |
44 | | |
45 | | #get fresh CRLs now |
46 | | # /usr/sbin/fetch-crl |
47 | | |
48 | | #install cron job for it |
49 | | # cat > /etc/cron.daily/fetch-crl.cron << EOF |
50 | | # #!/bin/sh |
51 | | # /usr/sbin/fetch-crl |
52 | | # EOF |
53 | | |
54 | | # chmod a+x /etc/cron.daily/fetch-crl.cron |
| 35 | wget https://dist.eugridpma.info/distribution/igtf/current/accredited/RPMS/ca_PolishGrid-1.38-1.noarch.rpm |
| 36 | wget http://software.plgrid.pl/packages/general/ca_PLGRID-SimpleCA-1.0-2.noarch.rpm |
| 37 | wget https://dist.eugridpma.info/distribution/util/fetch-crl/fetch-crl-2.8.5-1.noarch.rpm |
| 38 | |
| 39 | rpm -i ca_PolishGrid-1.38-1.noarch.rpm |
| 40 | rpm -i ca_PLGRID-SimpleCA-1.0-2.noarch.rpm |
| 41 | |
| 42 | #install certificate revocation list fetching utility |
| 43 | rpm -i fetch-crl-2.8.5-1.noarch.rpm |
| 44 | |
| 45 | #get fresh CRLs now |
| 46 | /usr/sbin/fetch-crl |
| 47 | |
| 48 | #install cron job for it |
| 49 | cat > /etc/cron.daily/fetch-crl.cron << EOF |
| 50 | #!/bin/sh |
| 51 | /usr/sbin/fetch-crl |
| 52 | EOF |
| 53 | |
| 54 | chmod a+x /etc/cron.daily/fetch-crl.cron |
155 | | It first checks the X509_USER_PROXY system property. If the property |
156 | | is not set, it checks next the 'proxy' property in the current |
157 | | configuration. If that property is not set, then it defaults to a |
158 | | value based on the following rules: |
159 | | If a UID system property is set, and running on a Unix machine it |
160 | | returns /tmp/x509up_u${UID}. If any other machine then Unix, it returns |
161 | | ${tempdir}/x509up_u${UID}, where tempdir is a platform-specific |
162 | | temporary directory as indicated by the java.io.tmpdir system property. |
163 | | If a UID system property is not set, the username will be used instead |
164 | | of the UID. That is, it returns ${tempdir}/x509up_u_${username} |
| 155 | It first checks the X509_USER_PROXY system property. If the property |
| 156 | is not set, it checks next the 'proxy' property in the current |
| 157 | configuration. If that property is not set, then it defaults to a |
| 158 | value based on the following rules: |
| 159 | If a UID system property is set, and running on a Unix machine it |
| 160 | returns /tmp/x509up_u${UID}. If any other machine then Unix, it returns |
| 161 | ${tempdir}/x509up_u${UID}, where tempdir is a platform-specific |
| 162 | temporary directory as indicated by the java.io.tmpdir system property. |
| 163 | If a UID system property is not set, the username will be used instead |
| 164 | of the UID. That is, it returns ${tempdir}/x509up_u_${username} |
172 | | It first checks the X509_CERT_DIR system property. If the property |
173 | | is not set, it checks next the 'cacert' property in the current |
174 | | configuration. If that property is not set, it tries to find |
175 | | the certificates using the following rules: |
176 | | First the ${user.home}/.globus/certificates directory is checked. |
177 | | If the directory does not exist, and on a Unix machine, the |
178 | | /etc/grid-security/certificates directory is checked next. |
179 | | If that directory does not exist and GLOBUS_LOCATION |
180 | | system property is set then the ${GLOBUS_LOCATION}/share/certificates |
181 | | directory is checked. |
| 172 | It first checks the X509_CERT_DIR system property. If the property |
| 173 | is not set, it checks next the 'cacert' property in the current |
| 174 | configuration. If that property is not set, it tries to find |
| 175 | the certificates using the following rules: |
| 176 | First the ${user.home}/.globus/certificates directory is checked. |
| 177 | If the directory does not exist, and on a Unix machine, the |
| 178 | /etc/grid-security/certificates directory is checked next. |
| 179 | If that directory does not exist and GLOBUS_LOCATION |
| 180 | system property is set then the ${GLOBUS_LOCATION}/share/certificates |
| 181 | directory is checked. |