- In order to use gridftp you need to have a valid grid certificate issued from the GridKa Certificate Authority (CA).
- Export your certificate from your browser as pk12 file and convert into the pem format with this script (requires openssl):
wget --no-check-certificate https://gridka-ca-sec.fzk.de/download/p12-2-pem-en.sh chmod 755 p12-2-pem-en.sh ./p12-2-pem-en.sh usercert.p12
- copy user certificate files in .globus folder:
mkdir -p $HOME/.globus/certificates mv usercert.pem $HOME/.globus mv userkey.pem $HOME/.globus chmod og-rwx $HOME/.globus userkey.pem ls -l $HOME/.globus/ drwxrwxr-x. 2 myname users 4096 Mar 9 08:29 certificates -r--r--r--. 1 myname users 1999 Mar 15 09:28 usercert.pem -r--------. 1 myname users 2004 Mar 15 09:28 userkey.pem
- The gridftp client needs to trust the CA that issued the host certificate of the gridftp server. Therefore, you need copy the CA root certificate of the GridKa CA to the certificates subfolder:
- to be continued...