Information Technology Reference
In-Depth Information
Fig. 6.2 Managing X.509 proxy certi
cates stored on MyProxy server
MyProxy servers, like the NGS Certi
cate Wizard [CertWizard] or the GSISSH-
Term [GSISSH-Term].
The
portlet can be used in the case of infrastructures where public
key-based SSH authentication is used to connect to the computing infrastructure.
Typical examples are PBS [PBS] or LSF [LSF] local resource management sys-
tems, where WS-PGRADE/gUSE uses a generated keypair to connect to the sub-
mission node of the target infrastructure.
The
“
Public key
”
portlet enables the users to generate or upload already existing
SAML assertion data that is typically used to access UNICORE resources.
Finally, the
“
Assertion
”
portlet offers an interface for entering e-mail and
passwords used to authenticate with different CloudBroker services.
Interested users can
“
CloudBroker
”
find the user interface description details of these security
portlets in Chap.
10
of the WS-PGRADE User
s Manual (2014).
Every computing infrastructure supported by WS-PGRADE/gUSE has an
authentication method attached. This can be
'
“
basic authentication
”
for e-mail or
username and password-based,
“
SSH key
”
for public key-based,
“
X509
”
for X.509
proxy-based, and
“
SAML
”
for assertion-based authentication. It follows from this,
that
tab on the WS-
PGRADE/gUSE user interface, then the given portlet can be used to set credentials
for computing infrastructures having the authentication method type implemented
by the given portlet. For example, the
if the user invokes a given portlet from the
“
Security
”
portlet can be used to set SSH
keys for LSF-based and PBS-based resources (as these computing infrastructures
use the
“
Public key
”
“
SSH key
”
authentication).
Search WWH ::
Custom Search