Gridftp client

From Lsdf
Revision as of 18:52, 18 March 2013 by Jmeyer (talk | contribs)

Grid Certificate

  • In order to use gridftp you need to have a valid grid certificate issued from the GridKa Certificate Authority (CA).
  • Export your certificate from your browser as pk12 file and convert into the pem format with this script (requires openssl):
wget --no-check-certificate https://gridka-ca-sec.fzk.de/download/p12-2-pem-en.sh
chmod 755 p12-2-pem-en.sh
./p12-2-pem-en.sh usercert.p12
  • copy user certificate files in .globus folder:
mkdir -p $HOME/.globus/certificates
mv usercert.pem $HOME/.globus
mv userkey.pem $HOME/.globus
chmod og-rwx $HOME/.globus userkey.pem

ls -l $HOME/.globus/
drwxrwxr-x. 2 myname users 4096 Mar  9 08:29 certificates
-r--r--r--. 1 myname users 1999 Mar 15 09:28 usercert.pem
-r--------. 1 myname users 2004 Mar 15 09:28 userkey.pem
  • The gridftp client needs to trust the CA that issued the host certificate of the gridftp server. Therefore, you need copy the CA root certificate of the GridKa CA to the certificates subfolder:
  • to be continued...