Software Links
Getting Started
- Doc Structure
- A Globus Primer
- Globus Is Modular!
- Quickstart
- Installing GT
- Platform Notes
- GT Developer's Guide
- GT User's Guide (coming soon)
- Migrating from GT2
- Migrating from GT3
Reference
- Best Practices
- Coding Guidelines
- API docs
- Public Interfaces (coming soon)
- Resource Properties
- Samples
- Glossary
- Performance Studies (coming soon)
Manuals
Common Runtime
Security
- Non-WS (General) Security
- WS Java Security
- Message-level
- Authz Framework
- CAS
- Delegation Service
- MyProxy
- GSI-OpenSSH
- SimpleCA
- SGAS
Data Mgt
MDS4
Execution Mgt
Table of Contents
While the GT4 version of this component has similar features to the GT3 version, some of the configuration methodology has changed and some features have been enhanced. Refer to Section 3.1.4.5, “Configuring authorization mechanisms” for changes in configuration.
GT2 and GT3 services were set up to run with root owned host credentials. In GT4 most,
but not all, services will run as the globus user. To allow the
globus user to start services using host credentials the globus user needs to be able to access them. This requirement can be satisfied by making a copy of the root owned host credentials, i.e. the host certificate and private key, owned by the globus user. In GT4 this copy is assumed to be /etc/grid-security/container{cert,key}.pem.
This version is not compatible with the GT3 version of CAS because of protocol changes. To migrate to this version, this component needs to be installed completely independent of any current GT3 CAS installs.
No special procedures are required for MyProxy installations migrating from GT3 to GT4. MyProxy is backward compatible.