Building from sources on Fedora Core 10 with Globus Security - MdsWiki
Navigation
Personal tools

From MdsWiki

Jump to: navigation, search

MDSplus can be built with secure network communication using the Globus software. This enables the use of X509 certificates for authentication and authorization when communicating to remote MDSplus servers (enabled for secure connections). The following will describe the steps needed to build and install the necessary Globus packages required and then those steps needed to build and install MDSplus with the secure communication capabilities.


Step Action Command
1Install Fedora software packages needed See Linux - Fedora. Install all required packages on that page except the Build MDSplus step.
2Get Globus source 
firefox http://www.globus.org/toolkit/downloads/latest-stable/
3Build Globus Packages Needed 
yum install perl-XML-LibXML
tar xjf globus-tarball-downloaded
cd gt[version]-all-source-installer
./configure --prefix=/usr/local/fusiongrid
make gpt globus-data-management-client gsi-openssh myproxy\
globus_gridmap_callout_error globus_gridftp_server globus_gram_client globus_gram_job_manager\
globus_xio globus_xio_gsi_driver
make install
4 Get MDSplus sources

Recommended: 

firefox http://www.mdsplus.org/index.php?url=mdsplus/download.php&page=Software/Downloads

Alternate (one of): 

wget https://github.com/MDSplus/mdsplus/archive/alpha.zip 
wget https://github.com/MDSplus/mdsplus/archive/alpha.tar.gz
wget https://github.com/MDSplus/mdsplus/archive/stable.zip
wget https://github.com/MDSplus/mdsplus/archive/stable.tar.gz
git clone https://github.com/MDSplus/mdsplus.git
5 Build MDSplus.

Make sure that the LANG environment variable is set to a non-UTF8 locale (e.g. en_US or the generation of UID files will fail and some applications mysteriously segfault. 

cd mdsplus
export GLOBUS_LOCATION=/usr/local/fusiongrid
source $GLOBUS_LOCATION/etc/globus-user-env.sh
./configure --prefix=/usr/local/fusiongrid --with-xio=/usr/local/fusiongrid:gcc32
make
make install
6 Set up remote access for users and server

Assuming DOEGrids/FusionGrid certificates:

Download certs.tar and put contents in /etc/grid-security/certificates 

wget http://cert.fusiongrid.org/FusionGrid/certs.tar
tar certs.tar --directory /etc/grid-security/certificates
7 Set up remote access for server

Assuming DOEGrids/FusionGrid certificates:

Download doegrids.tar and put contents in /etc/grid-security/ 

wget https://pki1.doegrids.org/other/doegrids.tar
tar doegrids.tar --directory /etc/grid-security
  • Follow instructions to get host certificate 
doegrids-cert-request -host thishost.thisdomain
8 Post Installation Work 
/usr/local/fusiongrid/rpm/post_install_script
  • Ensure files mdsplus.csh and mdsplus.sh in /etc/profile.d/
9 Post Installation Work for servers
  • Ensure file mdsips in /etc/xinetd.d/
  • Ensure mdsips in /etc/services
  • Update contents of /etc/grid-security/mdsip.hosts
10 Set up server if intend to use ROAM 
MDSPLUS_DIR/setup/globus/setup-globus-gaa-authz-callout
  • Ensure files gsi-authz.conf and gsi-gaa.conf in /etc/grid-security
  • Add line to gsi-authz.conf as described in roam/README
  • Update MDSPLUS_DIR/local/roam.env
Retrieved from "https://www.mdsplus.org/index.php/Building_from_sources_on_Fedora_Core_10_with_Globus_Security"