 |
 |
> I think some kind of authentication based on shared secret/tpc.key is still useful. As far as I understand, currently, when one server starts xrdcp to start up a TPC transfer, **authentication** happens before the TPC key is transferred to the other end. Hence, this needs to happen between the two servers, either via shared secret, GSI or something else. Only after that, **authorization** via the TPC key can step in. > Why ddmadmin used by FTS does not work is strange. Does the proxy has VOMS attribute? No, the ddmadmin robot does not transfer any VOMS attrobutes, and that's exactly the problem. I only see the GSI certificate, but no VO or role. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/xrootd/xrootd/issues/694#issuecomment-389679995 ######################################################################## Use REPLY-ALL to reply to list To unsubscribe from the XROOTD-DEV list, click the following link: https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1