Page History

...
Code Block
docker run -it --entrypoint /bin/bash indigoiam/voms-importer
sudo su
cat >/etc/yum.repos.d/egi.repo <<EOF
[EGI-trustanchors]
name=EGI-trustanchors
baseurl=https://repository.egi.eu/sw/production/cas/1/current/
gpgkey=https://repository.egi.eu/sw/production/cas/1/GPG-KEY-EUGridPMA-RPM-3
gpgcheck=1
EOF

yum install ca-policy-egi-core -y
cp /etc/grid-security/certificates/*.pem /etc/pki/ca-trust/source/anchors/
update-ca-trust
exit

eval `oidc-agent`
oidc-gen -w device <client-name> (# the "proxy:generate scope is required)", "iam:admin.read", "iam:admin.write" and "scim:write" scopes are required
[...]

export IAM_ENDPOINT=<iam-URL>
export OIDC_AGENT_ALIAS=<client-name>
export OIDC_AGENT_SECRET=***
export REQUESTS_CA_BUNDLE=/etc/pki/tls/cert.pem
init-credentials.sh
export X509_USER_PROXY=<generated-proxy-path>
vomsimporter --vo <vo-name> --voms-host <voms-server-host> --voms-port <voms-server-port> --iam-host <iam-hostname>
(as example: vomsimporter --vo juno --voms-host voms-juno.ihep.ac.cn --voms-port 8443 --iam-host iam-juno.cloud.cnaf.infn.it)
...
Page tree

Versions Compared

Old Version 8

New Version Current

Key
