i was testing “sss” with the new client. While the new client works with “sss” (other than the issue that login name is changed after redirection). But it doesn’t like enforce “sss” only by setting environment variable XrdSecPROTOCOL to “sss". The old client doesn’t have this issue. Here is my test: $ unset XrdSecPROTOCOL $ /afs/slac/package/xrootd/githead/amd64_rhel60/src/XrdCl/xrdcopy -f root://atlxrd001//atlas/xrootd/usr/y/yangw/z2.junk /dev/null sec_Client: protocol request for host atlxrd001 token='&P=sss,0.13:&P=unixԞ' sec_PM: Loading sss protocol object from libXrdSecsss.so sec_sss: Client keytab='/u/sf/yangw/.xrd/sss.keytab' sec_PM: Using sss protocol, args='0.13:' sec_sss: Ret 151 bytes of credentials; k=4 sec_Client: protocol request for host atlxrd001 token='&P=unixԞ' sec_PM: Loading unix protocol object from libXrdSecunix.so sec_PM: Using unix protocol, args='' [2.138GB/2.138GB][100%][==================================================][729.8MB/s] $ export XrdSecPROTOCOL=unix $ /afs/slac/package/xrootd/githead/amd64_rhel60/src/XrdCl/xrdcopy -f root://atlxrd001//atlas/xrootd/usr/y/yangw/z2.junk /dev/null sec_Client: protocol request for host atlxrd001 token='&P=sss,0.13:&P=unix??' sec_PM: Skipping sss only want unix sec_PM: Loading unix protocol object from libXrdSecunix.so sec_PM: Using unix protocol, args='' [2.138GB/2.138GB][100%][==================================================][729.8MB/s] $ export XrdSecPROTOCOL=sss $ /afs/slac/package/xrootd/githead/amd64_rhel60/src/XrdCl/xrdcopy -f root://atlxrd001//atlas/xrootd/usr/y/yangw/z2.junk /dev/null sec_Client: protocol request for host atlxrd001 token='&P=sss,0.13:&P=unix`+' sec_PM: Loading sss protocol object from libXrdSecsss.so sec_sss: Client keytab='/u/sf/yangw/.xrd/sss.keytab' sec_PM: Using sss protocol, args='0.13:' sec_sss: Ret 151 bytes of credentials; k=4 sec_Client: protocol request for host atlxrd001 token='&P=unix`+' sec_PM: Skipping unix only want sss XrdSec: No authentication protocols are available. [0B/0B][100%][==================================================][0B/s] Run: [FATAL] Auth failed $ /afs/slac/package/xrootd/githead/amd64_rhel60/src/xrdcp-old -f root://atlxrd001//atlas/xrootd/usr/y/yangw/z2.junk /dev/null sec_Client: protocol request for host atlxrd001.slac.stanford.edu token='&P=sss,0.13:&P=unix' sec_PM: Loading sss protocol object from libXrdSecsss.so sec_sss: Client keytab='/u/sf/yangw/.xrd/sss.keytab' sec_PM: Using sss protocol, args='0.13:' sec_sss: Ret 151 bytes of credentials; k=4 [xrootd] Total 2189.53 MB |====================| 100.00 % [712.3 MB/s] Wei Yang | [log in to unmask] | 1-650-926-3338 ######################################################################## Use REPLY-ALL to reply to list To unsubscribe from the XROOTD-DEV list, click the following link: https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1