NAME

edg-mkgridmap - a tool to build the grid-mapfile

SYNOPSIS

edg-mkgridmap [--help] [--version] [--conf=config_file] [--output[=output_file]] [--quiet] [--verbose] [--safe] [--nosafe] [--proxy] [--noproxy]

DESCRIPTION

edg-mkgridmap is a tool to build the grid-mapfile from VO servers, taking into account both VO and local policies.

CONFIGURATION

edg-mkgridmap.conf file contains configuration information for edg-mkgridmap.

The syntax of the edg-mkgridmap.conf file is discussed seperately. The edg-mkgridmap.conf(5) documentation should be consulted for detailed reference information.

The default location is /opt/edg/etc/edg-mkgridmap.conf.

The file essentially consists of a list of directives composed by a keyword and one or more arguments. Optional arguments are put in square brackets.

OPTIONS

--help
Print a summary of the command line options end exit.

--version
Print the version of edg-mkgridmap end exit.

--conf=config_file
Specifies the configuration file that is used by edg-mkgridmap. If omitted, edg-mkgridmap checks /opt/edg/var/etc/edg-mkgridmap.conf to see if a machine-specific configuration has been setup. If /opt/edg/var/etc/edg-mkgridmap.conf is not present, edg-mkgridmap uses the default configuration file /opt/edg/etc/edg-mkgridmap.conf.

--output[=output_file]
Specifies the output file. If omitted, stdout is used. If the optional argument output_file is omitted, the value of the environment variable GRIDMAP is used. If GRIDMAP is not set, then the default value /etc/grid-security/grid-mapfile is used.

--quiet
Turn off error messages.

--verbose
Print lots of useful informations. Ignored if --quiet is specified.

--safe, --nosafe
Disable (--safe) or enable (--nosafe) the grid-mapfile creation if one or more group directives can't be successfully completed. Default is enable (--nosafe).

--proxy, --noproxy
Enable (--proxy) or disable (--noproxy) proxy support for HTTP/HTTPS and VOMS/VOMSS connections. Default is disable (--noproxy).

The proxy support must be configured through appropriate environmental variables.

ERRORS

In case of one or more errors, edg-mkgridmap returns an exit code which is computed adding these possible values:

DIAGNOSTICS

The --verbose option produces some useful diagnostics.

Any error message generated by edg-mkgridmap is logged to the syslogd.

ENVIRONMENT

EDG_MKGRIDMAP_OPTIONS
Used to specify command line options.

EDG_LOCATION
Used to determine the location of edg-mkgridmap.conf and edg-subject2user. If not set, then the default value /opt/edg is used.

EDG_LOCATION_VAR
Used to determine the location of a machine-specific configuration file. If not set, then the default value $EDG_LOCATION/var is used. If EDG_LOCATION is not set, then the default value /opt/edg/var is used.

GRIDMAP
Used to determine the location of the grid-mapfile. If not set, then the default value /etc/grid-security/grid-mapfile is used.

CERTDIR
Used to determine the directory containing CA certificates. If not set, then the default value /etc/grid-security/certificates is used.

X509_USER_CERT
Used to determine the location of the host certificate. If not set, then the default value /etc/grid-security/hostcert.pem is used.

X509_USER_KEY
Used to determine the location of the host private key. If not set, then the default value /etc/grid-security/hostkey.pem is used.

http_proxy
Used to determine the proxy for HTTP connections. The syntax is: 
  http_proxy="[http://]<host>:<port>"

https_proxy
Used to determine the proxy for HTTPS connections. The syntax is: 
  https_proxy="[http://]<host>:<port>"

EXAMPLES

  edg-mkgridmap

Writes the grid-mapfile to the standard output.

  edg-mkgridmap --output=-

Writes the grid-mapfile to the standard output.

  edg-mkgridmap --output

Writes the grid-mapfile to the default location of the grid-mapfile.

  edg-mkgridmap --output=<output_file>

Writes the grid-mapfile to <output_file>.

FILES

/opt/edg/etc/var/edg-mkgridmap.conf

/opt/edg/etc/edg-mkgridmap.conf

/opt/edg/libexec/edg-mkgridmap/edg-subject2user

SEE ALSO

edg-mkgridmap.conf(5)

edg-subject2user(1)

AUTHORS

EU DataGrid Authorization Working Group <sec-grid@infn.it>