Skip to Content.
Sympa Menu

perfsonar-user - Re: [perfsonar-user] Problems with Authentication within perfsonar

Subject: perfSONAR User Q&A and Other Discussion

List archive

Re: [perfsonar-user] Problems with Authentication within perfsonar


Chronological Thread 
  • From: Nina Jeliazkova <>
  • To: "Niederberger, Ralph" <>
  • Cc: "" <>
  • Subject: Re: [perfsonar-user] Problems with Authentication within perfsonar
  • Date: Wed, 09 Sep 2009 15:44:06 +0300
Dear Ralph,

I am traveling until 15 Sep and will take a look at perfsonarUI AA after returning.  Sorry for the delay.

Best regards,
Nina

Niederberger, Ralph wrote: 
Dear all,

Has someone had the time to look into my problem with authentication
service?

I reinstalled the AS and SQL-MA several times to be sure that I did not
misconfigure something. The problem remains the same (see log below).

Could the problem be related to the fact that my GIdP account is not setup
correctly?

The following is what is stored at GEANT2: 

=======================================================
User ID:	 			RNiederberger-dfn.de 
Name:		 			Ralph Niederberger 
Display Name:			RNiederberger 
Postal Address: 			Forschungszentrum Jülich
Leo-Brand-Strasse  
Postal Code: 			52425 Jülich 
Email: 				 
Telephone:				02461614772 
Fax: 					02461-616656 
Organisation: 			Forschungszentrum Jülich 
Organisation Type:  
Position:  
Project Memberships:  
Project Specific Roles: 	Networkadmin 
Authorisation Attributes:	 
Additional Information:  
Preferred Language:  
Account Status:			activated
============================================================

Any help would be really appreciated.

Best regards

Ralph

=========== Log extract ==========
2009-09-09 13:32:16,281 [Load metadata and metrics] INFO  
     net.geant.edugain.base.Configurator - custom configuration loaded
2009-09-09 13:32:16,578 [Load metadata and metrics] INFO  
     net.geant.edugain.base.Configurator - keystore loaded: 
     java.security.KeyStore@16e2b70
2009-09-09 13:32:16,578 [Load metadata and metrics] INFO  
     net.geant.edugain.base.Configurator - keystore loaded: 
     java.security.KeyStore@1e5d007
2009-09-09 13:32:17,156 [Load metadata and metrics] INFO  
     net.geant.edugain.validation.Validator - default validator loaded
2009-09-09 13:32:17,156 [Load metadata and metrics] INFO   
     net.geant.edugain.validation.Validator - certificate 
     CN=badulaque.rediris.es, O=FedIRIS, DC=geant, DC=net issued by trusted 
     CN=eduGAINSCA, DC=geant, DC=net
2009-09-09 13:32:17,250 [Load metadata and metrics] INFO  
     net.geant.edugain.base.Configurator - expired CRL, successfully 
     retrieved from http://sca.edugain.org/crl/cacrl.der
2009-09-09 13:32:17,250 [Load metadata and metrics] DEBUG  
     net.geant.edugain.validation.Validator - validating subject alternative

     name: https://registry.edugain.org/resolver?urn=urn:geant:edugain:
        component:be:rediris:rediris.es
2009-09-09 13:32:17,250 [Load metadata and metrics] DEBUG 
     net.geant.edugain.validation.Validator - validating subject alternative

     name: https://registry.edugain.org/resolver?urn=urn:geant:edugain:
     component:mds:rediris.es
2009-09-09 13:32:17,250 [Load metadata and metrics] DEBUG 
     net.geant.edugain.base.Configurator - loading default valid components 
     from C:\Dokumente und Einstellungen\ralph\ValidComponentsFile
2009-09-09 13:32:17,250 [Load metadata and metrics] WARN  
     net.geant.edugain.base.Configurator - default valid components loaded. 
     Note this is intended only for development purpouses and is an insecure

     behaviour!
2009-09-09 13:32:17,250 [Load metadata and metrics] INFO  
     net.geant.edugain.validation.eduGAINComponentID - component identifier 
     successfully decoded: urn:geant:edugain:component:mds:rediris.es
2009-09-09 13:32:17,250 [Load metadata and metrics] INFO  
     net.geant.edugain.validation.Validator - valid component found while 
     validating certificate CN=badulaque.rediris.es, O=FedIRIS, DC=geant, 
     DC=net for component urn:geant:edugain:component:mds:rediris.es
2009-09-09 13:32:17,265 [Load metadata and metrics] INFO  
     net.geant.edugain.base.SecureConnection - certificate for 
     CN=badulaque.rediris.es, O=FedIRIS, DC=geant, DC=net was validated
2009-09-09 13:32:17,265 [Load metadata and metrics] INFO  
     net.geant.edugain.base.SecureConnection - successfully connected to 
     https://mds.rediris.es:8443
2009-09-09 13:32:17,593 [Load metadata and metrics] ERROR 
     net.geant.edugain.meta.query.MetaDataUnmarshaller - HLPattern type not 
     defined
================ end of log extract =========

Could the problem be related to the fact that my GIdP account is not setup
correctly?

The following is what is stored at GEANT2: 

=======================================================
User ID:	 			RNiederberger-dfn.de 
Name:		 			Ralph Niederberger 
Display Name:			RNiederberger 
Postal Address: 			Forschungszentrum Jülich
Leo-Brand-Strasse  
Postal Code: 			52425 Jülich 
Email: 				 
Telephone:				02461614772 
Fax: 					02461-616656 
Organisation: 			Forschungszentrum Jülich 
Organisation Type:  
Position:  
Project Memberships:  
Project Specific Roles: 	Networkadmin 
Authorisation Attributes:	 
Additional Information:  
Preferred Language:  
Account Status:			activated
============================================================

Any help would be really appreciated.

Best regards

Ralph

***************************************************
 Ralph Niederberger
 Juelich Supercomputing Centre
 Institute for Advanced Simulation

 Phone:  +49 2461 61-4772
 Fax:    +49 2461 61-6656
 E-Mail: 
 WWW:    http://www.fz-juelich.de/jsc/

 JSC is the coordinator of the
 John von Neumann Institute for Computing
 and member of the
 Gauss Centre for Supercomputing
***************************************************

 Forschungszentrum Jülich GmbH
 52425 Jülich

 Sitz der Gesellschaft: Jülich
 Eingetragen im Handelsregister des Amtsgerichts Düren Nr. HR B 3498
 Vorsitzende des Aufsichtsrats: MinDirig'in Bärbel Brumme-Bothe
 Geschäftsführung: Prof. Dr. Achim Bachem (Vorsitzender),
 Dr. Ulrich Krafft (stellv. Vorsitzender), Prof. Dr.-Ing. Harald Bolt,
 Prof. Dr. Sebastian M. Schmidt 

***************************************************

  
-----Ursprüngliche Nachricht-----
Von: Niederberger, Ralph []
Gesendet: Freitag, 4. September 2009 09:40
An: 
Betreff: [perfsonar-user] Problems with Authentication within perfsonar


Dear all,

Using PerfsonarUI and specifying in Interfaces -> Query & search options -
    
Options -> Request -> Enable authentication and authorization

After having checked this box I have been asked for my GIdP. Specifying
this
and trying to access SQL-MA info from my DEISA measurement archive I get
the
following error:


"Error code error.as.query Error description
AADispatchSOAPProtocol.getAuthentication: General exception while
retrieving
report See the C:\Programme\PerfSONAR\PerfsonarUI-v0.15\bin\perfsonar.log
file for further error details."

Looking into the log file I see:

-------------------------------------------------------------------
2009-09-04 09:23:05,578 [] INFO  net.geant.edugain.base.Configurator -
custom configuration loaded
2009-09-04 09:23:05,890 [] INFO  net.geant.edugain.base.Configurator -
keystore loaded: java.security.KeyStore@ad40a0
2009-09-04 09:23:05,890 [] INFO  net.geant.edugain.base.Configurator -
keystore loaded: java.security.KeyStore@6dd60e
2009-09-04 09:23:06,593 [] INFO  net.geant.edugain.validation.Validator -
default validator loaded
2009-09-04 09:23:06,609 [] INFO  net.geant.edugain.validation.Validator -
certificate CN=badulaque.rediris.es, O=FedIRIS, DC=geant, DC=net issued by
trusted CN=eduGAINSCA, DC=geant, DC=net
2009-09-04 09:23:06,781 [] INFO  net.geant.edugain.base.Configurator -
expired CRL, successfully retrieved from
http://sca.edugain.org/crl/cacrl.der
2009-09-04 09:23:06,781 [] DEBUG net.geant.edugain.validation.Validator -
validating subject alternative name:
https://registry.edugain.org/resolver?urn=urn:geant:edugain:component:be:r
ed
iris:rediris.es
2009-09-04 09:23:06,781 [] DEBUG net.geant.edugain.validation.Validator -
validating subject alternative name:
https://registry.edugain.org/resolver?urn=urn:geant:edugain:component:mds:
re
diris.es
2009-09-04 09:23:06,781 [] DEBUG net.geant.edugain.base.Configurator -
loading default valid components from
C:\Programme\PerfSONAR\PerfsonarUI-v0.15\bin\ValidComponentsFile
2009-09-04 09:23:06,781 [] WARN  net.geant.edugain.base.Configurator -
default valid components loaded. Note this is intended only for
development
purpouses and is an insecure behaviour!
2009-09-04 09:23:06,796 [] INFO
net.geant.edugain.validation.eduGAINComponentID - component identifier
successfully decoded: urn:geant:edugain:component:mds:rediris.es
2009-09-04 09:23:06,796 [] INFO  net.geant.edugain.validation.Validator -
valid component found while validating certificate
    
CN=badulaque.rediris.es,
  
O=FedIRIS, DC=geant, DC=net for component
urn:geant:edugain:component:mds:rediris.es
2009-09-04 09:23:06,796 [] INFO  net.geant.edugain.base.SecureConnection -
certificate for CN=badulaque.rediris.es, O=FedIRIS, DC=geant, DC=net was
validated
2009-09-04 09:23:06,796 [] INFO  net.geant.edugain.base.SecureConnection -
successfully connected to https://mds.rediris.es:8443
2009-09-04 09:23:07,203 [] ERROR
net.geant.edugain.meta.query.MetaDataUnmarshaller - HLPattern type not
defined
--------------------------------------------------------

Do you have any hints, what is going wrong.

Thanks in advance

Ralph



Archive powered by MHonArc 2.6.16.

Top of Page