 |
 |
I think some kind of authentication based on shared secret/tpc.key is still useful. But perhaps until we have SSL enabled in xroot protocol, this is not quite secure? Another way is to use proxy delegation. This works if everyone uses GSI (which is true in LHC, for now). But if site A uses GSI and site B use ABC, then delegation doesn’t work. For now the only thing that works is to provide this robot certificate… Why ddmadmin used by FTS does not work is strange. Does the proxy has VOMS attribute? -- Wei Yang | mailto:[log in to unmask] | 650-926-3338 (O) -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/xrootd/xrootd/issues/694#issuecomment-389676982 ######################################################################## Use REPLY-ALL to reply to list To unsubscribe from the XROOTD-DEV list, click the following link: https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1