Before testing the grid services repeat the Globus toolkit deployment on nodeA, but stop before creating a certificate authority. You do not need a new certificate authority for nodeA. Only one certificate authority is needed per grid or organization.

Instead you want to install the certificate authority files you created on nodeB onto nodeA.

To do that, copy the distribution file from nodeB to nodeA (remember that your CA will use a different hash name). Run the scp command as user globus on nodeA:

[globus@nodeA ~]$ scp root@nodeb:/home/globus/.globus/simpleCA/
globus_simple_ca_f1f2d5e6_setup-0.19.tar.gz .
root@nodeb's password:
globus_simple_ca_f1f2d5e6_setup-0.19.tar.gz 100% 211KB 210.8KB/s 00:00

As user 'globus' on nodeA install the CA files:

[globus@nodeA ~]$ gpt-build ./globus_simple_ca_f1f2d5e6_setup-0.19.tar.gz
gpt-build ====> CHECKING BUILD DEPENDENCIES FOR globus_simple_ca_f1f2d5e6_setup
gpt-build ====> Changing to /home/globus/BUILD/globus_simple_ca_f1f2d5e6_setup-0.19/
gpt-build ====> BUILDING globus_simple_ca_f1f2d5e6_setup
gpt-build ====> Changing to /home/globus/BUILD
gpt-build ====> REMOVING empty package globus_simple_ca_f1f2d5e6_setup-noflavor-data
gpt-build ====> REMOVING empty package globus_simple_ca_f1f2d5e6_setup-noflavor-dev
gpt-build ====> REMOVING empty package globus_simple_ca_f1f2d5e6_setup-noflavor-doc
gpt-build ====> REMOVING empty package globus_simple_ca_f1f2d5e6_setup-noflavor-pgm_static
gpt-build ====> REMOVING empty package globus_simple_ca_f1f2d5e6_setup-noflavor-rtl

[globus@nodeA ~]$ gpt-postinstall

running /opt/globus-4.0.1/setup/globus/./setup-ssl-utils.f1f2d5e6..[ Changing to /opt/globus-4.0.1/setup/globus/. ]

setup-ssl-utils: Configuring ssl-utils package
Running setup-ssl-utils-sh-scripts...

Note: To complete setup of the GSI software you need to run the following script as root to configure your security configuration directory:

/opt/globus-4.0.1/setup/globus_simple_ca_f1f2d5e6_setup/setup-gsi

For further information on using the setup-gsi script, use the -help option. The -default option sets this security configuration to be the default, and -nonroot can be used on systems where root access is not available.

setup-ssl-utils: Complete

..Done

Now run the 'setup-gsi' command just as you have done previously on nodeB, again using the '-default' and '-nonroot' flags:

[globus@nodeA ~]$ /opt/globus-4.0.1/setup/globus_simple_ca_f1f2d5e6_setup/setup-gsi -default -nonroot

setup-gsi: Configuring GSI security
Making trusted certs directory: /opt/globus-4.0.1/share/certificates/
mkdir /opt/globus-4.0.1/share/certificates/
Installing /opt/globus-4.0.1/share/certificates//grid-security.conf.f1f2d5e6...
Running grid-security-config...
Installing Globus CA certificate into trusted CA certificate directory...
Installing Globus CA signing policy into trusted CA certificate directory...
setup-gsi: Complete

< Back Next >