Hello, I am building Globus Toolkit 4.1.2 on Solaris 10 (again). There are three systems (globus-node1, globus-node2 and globus-node3).
I got some problems during testing the containers during configuration. I tried to create a counter service. With nodes 1 and 2 everything works fine: OK: ------- testu...@globus-node2 $ counter-create -s https://globus-node2.k1727.guu:8443/wsrf/services/CounterService > counter_node_2dup.epr testu...@globus-node2 $ globus-node2: var/containerLog auf grid-node2: ts=2010-07-25T09:59:03.062+02:00 guid=7d92b360-97c2-11df-ab0a-ba7afab29b27 event=org.globus.security.authn.transport.start ts=2010-07-25T09:59:03.425+02:00 guid=7d92b360-97c2-11df-ab0a-ba7afab29b27 event=org.globus.security.authn.transport.end status=0 DN="/O=Grid/OU=GlobusTest/OU=simpleCA-globus-ca.k1727.guu/OU=k1727.guu/CN=Test User" ts=2010-07-25T09:59:03.562+02:00 guid=7d92b360-97c2-11df-ab0a-ba7afab29b27 event=org.samples.counter.create.start […] ------- but when I try to create the counter on node 3, the following error occurs: ERROR: ------- testu...@globus-node2 $ counter-create -s https://globus-node3.k1727.guu:8443/wsrf/services/CounterService > counter_node3.epr Error: ; nested exception is: org.globus.gsi.gssapi.auth.AuthorizationException: Mutual authentication failed Expected target subject name="/O=Grid/OU=GlobusTest/OU=simpleCA-globus-ca.k1727.guu/OU=k1727.guu/CN=Test User" Target returned subject name="/O=Grid/OU=GlobusTest/OU=simpleCA-globus-ca.k1727.guu/CN=host/globus-node3.k1727.guu" testu...@globus-node2 $ var/containerLog auf grid-node3: ts=2010-07-25T09:53:00.152+02:00 guid=a5430780-97c1-11df-a497-dd40386a82d0 event=org.globus.security.authn.transport.start ts=2010-07-25T09:53:00.563+02:00 guid=a5430780-97c1-11df-a497-dd40386a82d0 event=org.globus.security.authn.transport.end status=0 DN="/O=Grid/OU=GlobusTest/OU=simpleCA-globus-ca.k1727.guu/OU=k1727.guu/CN=Test User" ------- Same behavior on machine 1: Counter Service on node 1 and 2 ok, on three the exception printed above. I really do not have any idea, where that wrong subject name may come from ... In my opinion the right subject name is returned (containerLog): "/O=Grid/OU=GlobusTest/OU=simpleCA-globus-ca.k1727.guu/OU=k1727.guu/CN=Test User" The expected one is the same: "/O=Grid/OU=GlobusTest/OU=simpleCA-globus-ca.k1727.guu/OU=k1727.guu/CN=Test User" but the wrong is received? "/O=Grid/OU=GlobusTest/OU=simpleCA-globus-ca.k1727.guu/CN=host/globus-node3.k1727.guu" On all hosts the host keys/certificate requests were created and signed certificates installed. grid-map-file (node3): "/O=Grid/OU=GlobusTest/OU=simpleCA-globus-ca.k1727.guu/OU=k1727.guu/CN=Test User" testuser I hope, anyone has an idea ... Joerg
