wiki:GIMIOMLToiRODS

Version 1 (modified by Jeanne Ohren, 7 years ago) (diff)

--

Data to be archived

Archive Service

Steps for accessing iRODS from OML via GSI:

Prerequisites:

  • iRODS server is built with GSI
  • iRODS client on the OML server is built with GSI
  • Slice owner has an account on the iRODS server
  • Slice owner's account has aua from GENI certificate configured

Prior to setting up the slice, the user must contact the iRODS administrator (via GEMINI mailing list?) and provide their username and GENI certificate identity (give the openssl command). An account will be established for them in the "GIMI zone" with an aua matching the provided certificate identity.

  1. Set-up tool will generate a proxy certificate from slice owner's GENI certificate.
  2. Set-up tool will place proxy pem file in appropriate location on the OML server (home directory of user executing the archive service)
  3. Set-up tool will configure irodsEnv for the user executing the archive service.
    1. host/port - set to the KY iRODS server
    2. zone/resource - a predetermined "GEMINI zone"
    3. username - provided by the user during instrumentize - this MUST match the iRODS account
    4. irods directories - determined from username and zone (e.g. /geminiZone/home/username)

iRODS servers with GSI

What iRODS server will be used? Is it running 3.2 with GSI?