Mailing List Archives Authenticated access	UW Madison Computer Sciences Department Computer Systems Lab

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[HTCondor-users] wrong authentication method

Date: Wed, 18 Sep 2024 16:09:49 +0200 (CEST)
From: john.henry.lee@xxxxxxxxxxx
Subject: [HTCondor-users] wrong authentication method

I have this is on our startd machine which is running on Azure.

SEC_DAEMON_INTEGRITY = REQUIRED
SEC_DAEMON_AUTHENTICATION = REQUIRED
SEC_DAEMON_AUTHENTICATION_METHODS = SSL
SEC_NEGOTIATOR_INTEGRITY = REQUIRED
SEC_NEGOTIATOR_AUTHENTICATION = REQUIRED
SEC_NEGOTIATOR_AUTHENTICATION_METHODS = SSL

ALLOW_DAEMON = ssl@unmapped
SSL_DIR = /opt/secure/keys
AUTH_SSL_CLIENT_CAFILE = $(SSL_DIR)/certs/ca.pem
AUTH_SSL_CLIENT_CERTFILE = $(SSL_DIR)/certs/$(FULL_HOSTNAME).pem
AUTH_SSL_CLIENT_KEYFILE = $(SSL_DIR)/private_keys/$(FULL_HOSTNAME).pem
AUTH_SSL_SERVER_CAFILE = $(SSL_DIR)/certs/ca.pem
AUTH_SSL_SERVER_CERTFILE = $(SSL_DIR)/certs/$(FULL_HOSTNAME).pem
AUTH_SSL_SERVER_KEYFILE = $(SSL_DIR)/private_keys/$(FULL_HOSTNAME).pem
SEC_CLIENT_AUTHENTICATION_METHODS = FS, SSL

The deamon starts up. However, in my Masterlog, its asking for IDTOKENs?

I see,

Authorization Server 'condor@domain/addr'

Token request not approved; will retry in 5 seconds?

Why is it doing that?

Sent with Tuta; enjoy secure & ad-free emails:

https://tuta.com

Follow-Ups:
- Re: [HTCondor-users] wrong authentication method
  - From: Jaime Frey

Prev by Date: Re: [HTCondor-users] How to use ID Tokens
Next by Date: [HTCondor-users] Condor_ssh_to_job fails
Previous by thread: Re: [HTCondor-users] schedd error: cannot allocate a cluster id
Next by thread: Re: [HTCondor-users] wrong authentication method
Index(es):
- Date
- Thread

Mailing List Archives

Authenticated access

[HTCondor-users] wrong authentication method