Skip to Content.
Sympa Menu

perfsonar-dev - Re: [pS-dev] Re: CNM and GIdP

Subject: perfsonar development work

List archive

Re: [pS-dev] Re: CNM and GIdP


Chronological Thread 
  • From: Cándido Rodríguez Montes <>
  • To: Nicolas Simar <>
  • Cc: , Maurizio Molina <>, "" <>, Roberto Sabatino <>
  • Subject: Re: [pS-dev] Re: CNM and GIdP
  • Date: Wed, 16 Apr 2008 12:11:03 +0200
Hi Nicolas,

El 16/04/2008, a las 11:42, Nicolas Simar escribió:
Hi Candido,

That's my user id: first_nicolas-dante.net.
How can a user verify he has a valid ID. (please note that the tool should tell him what the problem is, and this is not the case, the GIdP, the AS and the visualisation tools should all send error messages to notify the user about what the problem is. Without it, the SD won't be able to support anything). Please add this as a requirement to your products and exchagne the error messages already available + identify how to pass them on.

I logged in onto:
From there I am assuming that I have a valid account. Correct?


Yes, if you can log in in that web application, it means you have a valid account.

Regards

Cheers,
Nicolas




Cándido Rodríguez Montes wrote:
Hi Nicolas,
are you sure that you had writen a valid GIdP account?
I just tried using my GIdP account and I can get the certificate:
kanete:~/Projects/workspace/RedIRIS - perfSONAR/geant2_java-as/ant kan$ ant run-ubc-saslcaBuildfile: build.xml
run-ubc-saslca:     [java] SASL CA Server: srv2.ams.nl.geant2.net     [java] SASL CA Port: 4088     [java] TrustStore File: /Users/kan/Projects/workspace/RedIRIS - perfSONAR/geant2_java-as/conf/handle.jks     [java] TrustStore Password: petete     [java] TrustStore Type: jceks     [java] Username: first_candido-dante.net     [java] Password: %intentionally_omitted%     [java] Operation: get     [java] End Point: http://homer.rediris.es:8080/perfSONAR-AS/services/AuthService     [java] - Connecting to srv2.ams.nl.geant2.net:4088     [java] - chose SASL mechanism: PLAIN     [java] - No SASL security layer was negotiated     [java] - closing client socket     [java] Issuer DN: CN=A, OU=B, O=C, L=D, ST=E, C=ES     [java] Subject DN: CN=e3d7d587-f5ea-40c2-bed5-d47bab881d47, O=edugain     [java] Subject Alternative Name:https://registry.edugain.org/resolver?urn=urn%3Ageant%3Aedugain%3Acomponent%3Aee%3Agidp_federation%3Ae3d7d587-f5ea-40c2-bed5-d47bab881d47     [java] Valid from: 15/04/08 12:07     [java] Valid until: 15/04/08 20:07     [echo] Test ended successfully.
BUILD SUCCESSFULTotal time: 5 seconds
El 15/04/2008, a las 12:07, Nicolas Simar escribió:
Hi,

I tried to start the CNM tool using the GIdP account and I got the message: authentication fail.

No progress in solving this issue?

As you can see, this auth process involves the CNM, the GIdP and the SASL CA. Proper logging information and error messages *must* be identified and implemented, otherwise it will not be possible for the SD to solve the issue. This is a very big issue.
It seems the message is right. Your authentication did fail.
Regards

Cheers,
Nicolas


<> wrote:

Hi Nicolas,
I inverstigated it a bit:
the GIDP (srv2.ams.nl.geant2.net:4088) seems to be down:
PSLoginPanel::doPSAuth(): Querying srv2.ams.nl.geant2.net:4088
PSLoginPanel::doPSAuth(): Using userName='first_david-dante.net',
password='OnL4m7'
- Connecting to srv2.ams.nl.geant2.net:4088
java.security.PrivilegedActionException: java.net.ConnectException:
Connection timed out
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.doAs(Subject.java:396)
at
org.perfsonar.client.base.authn.saslca.SASLCAClient.getCertficate(Unknown
Source)
at DE.dfn.csm.perfsonar.aa.PSLoginPanel.doPSAuth(PSLoginPanel.java:377)
at DE.dfn.csm.perfsonar.aa.PSLoginPanel.doLoginAction(PSLoginPanel.java:410)
at
DE.dfn.csm.topo.auth.module.PerfsonarCSMAuthentication.tryCSMLoginAction(PerfsonarCSMAuthentication.java:94)
at
DE.dfn.csm.topo.auth.CSMLoginFrame.actionPerformed(CSMLoginFrame.java:785)
at javax.swing.AbstractButton.fireActionPerformed(AbstractButton.java:1849)
at
javax.swing.AbstractButton$Handler.actionPerformed(AbstractButton.java:2169)
at
javax.swing.DefaultButtonModel.fireActionPerformed(DefaultButtonModel.java:420)
at javax.swing.DefaultButtonModel.setPressed(DefaultButtonModel.java:258)
at
javax.swing.plaf.basic.BasicButtonListener.mouseReleased(BasicButtonListener.java:234)
at java.awt.Component.processMouseEvent(Component.java:5488)
at javax.swing.JComponent.processMouseEvent(JComponent.java:3126)
at java.awt.Component.processEvent(Component.java:5253)
at java.awt.Container.processEvent(Container.java:1966)
at java.awt.Component.dispatchEventImpl(Component.java:3955)
at java.awt.Container.dispatchEventImpl(Container.java:2024)
at java.awt.Component.dispatchEvent(Component.java:3803)
at java.awt.LightweightDispatcher.retargetMouseEvent(Container.java:4212)
at java.awt.LightweightDispatcher.processMouseEvent(Container.java:3892)
at java.awt.LightweightDispatcher.dispatchEvent(Container.java:3822)
at java.awt.Container.dispatchEventImpl(Container.java:2010)
at java.awt.Window.dispatchEventImpl(Window.java:1774)
at java.awt.Component.dispatchEvent(Component.java:3803)
at java.awt.EventQueue.dispatchEvent(EventQueue.java:463)
at
java.awt.EventDispatchThread.pumpOneEventForHierarchy(EventDispatchThread.java:242)
at
java.awt.EventDispatchThread.pumpEventsForHierarchy(EventDispatchThread.java:163)
at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:157)
at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:149)
at java.awt.EventDispatchThread.run(EventDispatchThread.java:110)
Best Regards
David

Hi David,

I tried to used the GIdP account to log-in on the CNM
I got a login fail - authentication failure.

Cheers,
--
Nicolas
______________________________________________________________________

Nicolas Simar
Network Engineer

DANTE - www.dante.net <http://www.dante.net>

Tel - BE: +32 (0) 4 366 93 49
Tel - UK: +44 (0)1223 371 300
Mobile: +44 (0) 7740 176 883

City House, 126-130 Hills Road
Cambridge CB2 1PQ
UK
_____________________________________________________________________






-- 
Nicolas
______________________________________________________________________

Nicolas Simar
Network Engineer

DANTE - www.dante.net <http://www.dante.net>

Tel - BE: +32 (0) 4 366 93 49
Tel - UK: +44 (0)1223 371 300
Mobile: +44 (0) 7740 176 883

City House, 126-130 Hills Road
Cambridge CB2 1PQ
UK
_____________________________________________________________________





--
Cándido Rodríguez Montes E-mail: <>
Middleware warrior Tel:+34 955 05 66 13
Red.ES/RedIRIS
Edificio CICA
Avenida Reina Mercedes, s/n
41012 Sevilla
SPAIN

-- 
Nicolas
______________________________________________________________________

Nicolas Simar
Network Engineer


Tel - BE: +32 (0) 4 366 93 49
Tel - UK: +44 (0)1223 371 300
Mobile: +44 (0) 7740 176 883

City House, 126-130 Hills Road
Cambridge CB2 1PQ
UK
_____________________________________________________________________






--
Cándido Rodríguez Montes E-mail: 
Middleware warrior Tel:+34 955 05 66 13
Red.ES/RedIRIS
Edificio CICA
Avenida Reina Mercedes, s/n
41012 Sevilla
SPAIN





Archive powered by MHonArc 2.6.16.

Top of Page