Mailing List Archives Authenticated access	UW Madison Computer Sciences Department Computer Systems Lab

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [HTCondor-users] condor 8.x and authentication woes

Date: Tue, 02 Jul 2019 13:37:13 +0000
From: "Bockelman, Brian" <BBockelman@xxxxxxxxxxxxx>
Subject: Re: [HTCondor-users] condor 8.x and authentication woes


> On Jul 2, 2019, at 6:27 AM, Keith Brown <keith6014@xxxxxxxxx> wrote:
> 
> I managed to get further. The collector is able to startd from r2.
> 
> Now, when I submit my job
> Submitting job(s)
> ERROR: Failed to connect to local queue manager
> AUTHENTICATE:1003:Failed to authenticate with any method
> 
> I copied and pased "condor" in mapped file to "usera"
> 
> SSL /C=US/ST=MI/L=Madison/O=University of Wisconsin
> --Madison/O=Computer Sciences Department/OU=HTCondor
> Project/CN=Service condor
> SSL /C=US/ST=MI/L=Madison/O=University of Wisconsin
> --Madison/O=Computer Sciences Department/OU=HTCondor
> Project/CN=Service usera

:) ST=MI, eh?

> 
> 
> The schedd log looks like this
> Return from Handler <SecManStartCommand::WaitForSocketCallback
> UPDATE_SCHEDD_AD> 0.016881s
> 07/02/19 07:24:45 Calling Handler <DaemonCommandProtocol::WaitForSocketData> (6)
> 07/02/19 07:24:45 Return from Handler
> <DaemonCommandProtocol::WaitForSocketData> 0.000222s
> 07/02/19 07:24:45 Calling Handler <DaemonCommandProtocol::WaitForSocketData> (6)
> 07/02/19 07:24:45 DC_AUTHENTICATE: authentication of
> <192.168.56.101:8342> did not result in a valid mapped user name,
> which is required for this command (1112 QMGMT_WRITE_CMD), so
> aborting.
> 07/02/19 07:24:45 DC_AUTHENTICATE: reason for authentication failure:
> AUTHENTICATE:1003:Failed to authenticate with any method
> 07/02/19 07:24:45 Return from Handler
> <DaemonCommandProtocol::WaitForSocketData> 0.000109s
> 
> Any ideas?
> 

Yes - this indicates a mapping issue.  Basically, the schedd is authenticating the user as "ssl@unmapped".  Precisely, anything "@unmapped" results in this error message for submitting:

> 07/02/19 07:24:45 DC_AUTHENTICATE: authentication of
> <192.168.56.101:8342> did not result in a valid mapped user name,
> which is required for this command (1112 QMGMT_WRITE_CMD), so
> aborting.


 This indicates the SSL authentication went OK but a valid username was not found in the mapfile.  This likely got logged a but earlier in the schedd log.

Brian

Follow-Ups:
- Re: [HTCondor-users] condor 8.x and authentication woes
  - From: Keith Brown

References:
- [HTCondor-users] condor 8.x and authentication woes
  - From: Keith Brown
- Re: [HTCondor-users] condor 8.x and authentication woes
  - From: Bockelman, Brian
- Re: [HTCondor-users] condor 8.x and authentication woes
  - From: Keith Brown
- Re: [HTCondor-users] condor 8.x and authentication woes
  - From: Bockelman, Brian
- Re: [HTCondor-users] condor 8.x and authentication woes
  - From: Tim Theisen
- Re: [HTCondor-users] condor 8.x and authentication woes
  - From: Keith Brown
- Re: [HTCondor-users] condor 8.x and authentication woes
  - From: Keith Brown

Prev by Date: [HTCondor-users] [CfP] - DEADLINE EXTENDED to July 07 - 5th International Symposium on Algorithmic Aspects of Cloud Computing (ALGOCLOUD 2019)
Next by Date: Re: [HTCondor-users] Submitting different users jobs from the single remote user.
Previous by thread: Re: [HTCondor-users] condor 8.x and authentication woes
Next by thread: Re: [HTCondor-users] condor 8.x and authentication woes
Index(es):
- Date
- Thread

Mailing List Archives

Authenticated access

Re: [HTCondor-users] condor 8.x and authentication woes