Mailing List ArchivesAuthenticated access |
![[Computer Systems Lab]](http://www.cs.wisc.edu/pics/csl_logo.gif){kind=logo}
|
Mailing List ArchivesAuthenticated access |
|
Hi Max,ah, fair enough - I had only thought about the scheduler to scheduler relation...
anyway - I probably have found my issue wrt Condor authz. When spawning my preprod cluster, I had not set the correct flag in puppet and had rolled out legacy `use security:host_based` - shooting myself in the food ð Am going to scrap the cluster and set it up anew with the proper authz model...
Sorry for the noise, Thomas On 18/03/2025 18.04, KÃhn, Max (SCC) wrote:
Hi Thomas, This doesnât address your token problem, but the auth problem you are seeing is not CE-Schedd to LRMS-Schedd but rather CE-Schedd/JobRouter to LRMS-Collector. Since the CE-Schedd and LRMS-Collector do *not* run on the same machine, they cannot auth via FS. Even if the CE-Schedd and LRMS-Schedd run on the same machine, the CE-Schedd does not actually know that. It asks the LRMS-Collector for the address of the LRMS-Schedd, then connects to that address. Cheers, Max
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature