1GRID-MAPFILE-ADD-(8) Globus Commands GRID-MAPFILE-ADD-(8)
2
6 grid-mapfile-add-entry - Add an entry to a gridmap file
7
9 grid-mapfile-add-entry [-help] [-usage] [-version] [-versions]
10 grid-mapfile-add-entry {-dn DISTINGUISHED-NAME} {-ln LOCAL-NAME...}
12 [[-d] | [-dryrun]]
13 [[-mapfile MAPFILE] | [-f MAPFILE]]
14
16 The grid-mapfile-add-entry program adds a new mapping from an X.509
17 distinguished name to a local POSIX user name to a gridmap file.
18 Gridmap files are used as a simple authorization method for services
19 such as GRAM5 or GridFTP.
20 The grid-mapfile-add-entry program verifies that the LOCAL-NAME is a
22 valid user name on the system on which it was run, and that the mapping
23 between DISTINGUISHED-NAME and LOCAL-NAME does not already exist in the
24 gridmap file.
25 By default, grid-mapfile-add-entry will modify the gridmap file named
27 by the GRIDMAP environment variable if present, or the file
28 /etc/grid-security/grid-mapfile if not. This can be changed by the use
29 of the -mapfile or -f command-line options.
30 If the gridmap file does not exist, grid-mapfile-add-entry will create
32 it. If it already exists, grid-mapfile-add-entry will save the current
33 contents of the file to a new file with the string .old appended to the
34 file name.
35 The full set of command-line options to grid-mapfile-add-entry are:
37 -help, -usage
39 Display the command-line options to grid-mapfile-add-entry.
40 -version, -versions
42 Display the version number of the grid-mapfile-add-entry command.
43 The second form includes more details.
44 -dn DISTINGUISHED-NAME
46 The X.509 distinguished name to add a mapping for. The name should
47 be in OpenSSL´s oneline format.
48 -ln LOCAL-NAME...
50 The POSIX user name to map the distinguished name to. This name
51 must be a valid username. Add multiple LOCAL-NAME strings after the
52 -ln command-line option. If any of the local names are invalid, no
53 changes will be made to the gridmap file. Note that if multiple
54 occurances of the -ln command-line option are present, only the the
55 last one will be added.
56 -d, -dryrun
58 Verify local names and display diagnostics about what would be
59 added to the gridmap file, but don´t actually modify the file.
60 -mapfile MAPFILE, -f MAPFILE
62 Modify the gridmap file named by MAPFILE instead of the default.
63
65 Add a mapping between the current user´s certificate to the current
66 user id to a gridmap file in $HOME/.gridmap:
67 % grid-mapfile-add-entry -f $HOME/.gridmap -dn "`grid-cert-info -subject`" -ln "`id -un`"
69 Modifying /home/juser/.gridmap ...
70 /home/juser/.gridmap does not exist... Attempting to create /home/juser/.gridmap
71 New entry:
72 "/DC=org/DC=example/DC=grid/CN=Joe User" juser
73 (1) entry added
74 Add a mapping between the a distinguished name and multiple local
76 names:
77 % grid-mapfile-add-entry -dn "/DC=org/DC=example/DC=grid/CN=Joe User" juser" local1 local2
79 Modifying /home/juser/.gridmap ...
80 /home/juser/.gridmap does not exist... Attempting to create /home/juser/.gridmap
81 New entry:
82 "/DC=org/DC=example/DC=grid/CN=Joe User" local1,local2
83 (1) entry added
84
87 The following environment variables affect the execution of
88 grid-mapfile-add-entry:
89 GRIDMAP
91 Path to the default gridmap to modify.
92
94 The following files affect the execution of grid-mapfile-add-entry:
95 /etc/grid-security/grid-mapfile
97 Path to the default gridmap to modify if GRIDMAP environment
98 variable is not set.
99
101 grid-mapfile-check-consistency(8), grid-mapfile-delete-entry(8)
102
104 University of Chicago
105Globus Toolkit 5.0.1 03/19/2010 GRID-MAPFILE-ADD-(8)