Mailing List Archives Authenticated access	UW Madison Computer Sciences Department Computer Systems Lab

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Condor-users] Setting up credd in Windows

Date: Wed, 13 Jul 2011 10:59:25 +0000
From: "Rochford, Steve" <s.rochford@xxxxxxxxxxxxxx>
Subject: [Condor-users] Setting up credd in Windows

I'm still stuck with this!

I've got condor running on a central server. I've copied c:\condor\etc\condor_config.local.credd to c:\condor\condor_config.local and made the following changes:

   CREDD_HOST = myhostname.cc.ic.ac.uk
   ALLOW_CONFIG = user1@*, user2@*

On a test submission machine I've got c:\condor\condor_config.local containing:

   CREDD_HOST = myhostname.cc.ic.ac.uk
   CREDD_CACHE_LOCALLY = True
   
   STARTER_ALLOW_RUNAS_OWNER = True
   
   HOSTALLOW_CONFIG = $(HOSTALLOW_ADMINISTRATOR)
   ALLOW_CONFIG = user1@*, user2@*
   SEC_CLIENT_AUTHENTICATION_METHODS = NTSSPI, PASSWORD
   SEC_CONFIG_NEGOTIATION = REQUIRED
   SEC_CONFIG_AUTHENTICATION = REQUIRED
   SEC_CONFIG_ENCRYPTION = REQUIRED
   SEC_CONFIG_INTEGRITY = REQUIRED

(user1 and user2 are both domain accounts available on the server and submission machine; both have admin rights on both machines)

I've logged on as user1 on the machine running credd and run condor_store_cred add -c; I enter a password when prompted and it appears to be accepted. I then try to run condor_store_cred add -c -n myworkstation.ma.ic.ac.uk and get the following error:

Account: condor_pool@xxxxxxxxxxxxxxxxxxxxxx

Operation failed.
    Make sure you have CONFIG access to the target Master.

What have I missed? Why does it say "account: condor_pool" rather than showing my username?

I did find a message on the list which suggested I need to stop/start the condor services so I've also done that but it doesn't help.

I've turned on debug logging for credd and this appears in credd.log

07/13/11 11:45:03 getStoredCredential(): Could not locate credential for user 'condor_pool@xxxxxxxxxxxxxxxxxxxxxx'
07/13/11 11:45:03 Found credential for user 'condor_pool@xxxxxxxxxxxxxxxxxxxxxx'
07/13/11 11:45:23 condor_read(): timeout reading 5 bytes from <155.198.xx.yy:50580>.
07/13/11 11:45:23 IO: Failed to read packet header
07/13/11 11:45:23 AUTHENTICATE: handshake failed!
07/13/11 11:45:23 DC_AUTHENTICATE: required authentication of 155.198.xx.yy failed: AUTHENTICATE:1002:Failure performing handshake|AUTHENTICATE:1004:Failed to authenticate using PASSWORD

Steve

Prev by Date: [Condor-users] CFP: 12th IEEE/ACM Int. Symp. on Cluster, Grid and Cloud, Computing (CCGrid) 2012
Next by Date: [Condor-users] Attribute injection with +Name in submit files
Previous by thread: [Condor-users] CFP: 12th IEEE/ACM Int. Symp. on Cluster, Grid and Cloud, Computing (CCGrid) 2012
Next by thread: [Condor-users] Attribute injection with +Name in submit files
Index(es):
- Date
- Thread

Mailing List Archives

Authenticated access

[Condor-users] Setting up credd in Windows