JGridstart/Dot-globus

From PDP/Grid Wiki
Jump to navigationJump to search

Globus has a convention for storing and retrieving the user's key and certificate. On unix and related systems, this is a directory ~/.globus . This page discusses the files that can be present.

  • userkey.pem - the user's private key in PEM format
  • usercert.pem - the user's public certificate in PEM format
  • cog.properties - security properties used by Globus CoG, allows customising the others (!) CogProperties /(JavaDoc)
  • certificates/ - CA certificates to replace system's location when present (also in CogProperties). This directory contains files named by the hash code of each CA identity:
    • <hash>.0 - CA certificate
    • <hash>.info -
    • <hash>.namespaces -
    • <hash>.signing_policy - GSI signing policy. The CA signing policy is used to place constraints on the information you trust a given CA to bind to public keys. Specifically it constrains the identities a CA is trusted to assert in a certificate.
    • <hash>.crl_url - URL of the corresponding certificate revocation list
    • <hash>.r0 - copy of the certificate revocation list

Location of ~/.globus

Unix and related: ~/.globus Windows: c:\Documents and Settings\[your username]\.globus

Links