Mailing List Archives Authenticated access	UW Madison Computer Sciences Department Computer Systems Lab

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [HTCondor-users] Need for COLLECTOR.ALLOW_ADVERTISE_STARTD in HTCondor-CE?

Date: Mon, 20 Nov 2023 11:57:22 +0100
From: Thomas Hartmann <thomas.hartmann@xxxxxxx>
Subject: Re: [HTCondor-users] Need for COLLECTOR.ALLOW_ADVERTISE_STARTD in HTCondor-CE?

Hi Max and all,

I am not yet as far as you, but I would like to authz all daemons in the23.0 cluster with tokens limited to their specific roles.

I guess, that your finding would mean, that the collector would have tohave a condor token also including the startd capability, right?But I guess the collector has necessarily all privileges as the tokensigner by nature of its role, or? (or asking the other way round, can acollector be constraint on the token level in addition to the config tospecific capabilities?)


Cheers,
  Thomas

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

References:
- [HTCondor-users] Need for COLLECTOR.ALLOW_ADVERTISE_STARTD in HTCondor-CE?
  - From: Fischer, Max (SCC)

Prev by Date: [HTCondor-users] Need for COLLECTOR.ALLOW_ADVERTISE_STARTD in HTCondor-CE?
Next by Date: Re: [HTCondor-users] Need for COLLECTOR.ALLOW_ADVERTISE_STARTD in HTCondor-CE?
Previous by thread: [HTCondor-users] Need for COLLECTOR.ALLOW_ADVERTISE_STARTD in HTCondor-CE?
Next by thread: Re: [HTCondor-users] Need for COLLECTOR.ALLOW_ADVERTISE_STARTD in HTCondor-CE?
Index(es):
- Date
- Thread

Mailing List Archives

Authenticated access

Re: [HTCondor-users] Need for COLLECTOR.ALLOW_ADVERTISE_STARTD in HTCondor-CE?