1GRID-MAPFILE-ADD-(8) Grid Community Toolkit Manual GRID-MAPFILE-ADD-(8)
2
6 grid-mapfile-add-entry - Add an entry to a gridmap file
7
9 grid-mapfile-add-entry [ -h | -help | -usage | -version | -versions ]
10 grid-mapfile-add-entry -dn DISTINGUISHED-NAME -ln LOCAL-NAME... [-d |
12 -dryrun] [ -f MAPFILE | -mapfile MAPFILE ] [-force] [ -n ] [ -c ]
13
15 The grid-mapfile-add-entry program adds a new mapping from an X.509
16 distinguished name to a local POSIX user name to a gridmap file.
17 Gridmap files are used as a simple authorization method for services
18 such as GRAM5 or GridFTP.
19 The grid-mapfile-add-entry program verifies that the LOCAL-NAME is a
21 valid user name on the system on which it was run, and that the mapping
22 between DISTINGUISHED-NAME and LOCAL-NAME does not already exist in the
23 gridmap file.
24 By default, grid-mapfile-add-entry will modify the gridmap file named
26 by the GRIDMAP environment variable if present, or the file
27 /etc/grid-security/grid-mapfile if not. This can be changed by the use
28 of the -mapfile or -f command-line options.
29 If the gridmap file does not exist, grid-mapfile-add-entry will create
31 it. If it already exists, grid-mapfile-add-entry will save the current
32 contents of the file to a new file with the string .old appended to the
33 file name.
34 The full set of command-line options to grid-mapfile-add-entry are:
36 -help, -usage
38 Display the command-line options to grid-mapfile-add-entry.
39 -version, -versions
41 Display the version number of the grid-mapfile-add-entry command.
42 The second form includes more details.
43 -dn DISTINGUISHED-NAME
45 The X.509 distinguished name to add a mapping for. The name should
46 be in OpenSSL’s oneline format.
47 -ln LOCAL-NAME...
49 The POSIX user name to map the distinguished name to. This name
50 must be a valid username. Add multiple LOCAL-NAME strings after the
51 -ln command-line option. If any of the local names are invalid, no
52 changes will be made to the gridmap file (but see force option
53 below).
54 -d, -dryrun
56 Verify local names and display diagnostics about what would be
57 added to the gridmap file, but don’t actually modify the file.
58 -mapfile MAPFILE, -f MAPFILE
60 Modify the gridmap file named by MAPFILE instead of the default.
61 -force
63 Make modifications even if user does not exist (needed for
64 B2STAGE).
65 -n
67 Don’t copy the original file to MAPFILE.old.
68 -c
70 Don’t check for changes to the gridmap during program execution.
71
73 Add a mapping between the current user’s certificate to the current
74 user id to a gridmap file in $HOME/.gridmap:
75 % grid-mapfile-add-entry -f $HOME/.gridmap -dn "`grid-cert-info -subject`" -ln "`id -un`"
77 Modifying /home/juser/.gridmap ...
78 /home/juser/.gridmap does not exist... Attempting to create /home/juser/.gridmap
79 New entry:
80 "/DC=org/DC=example/DC=grid/CN=Joe User" juser
81 (1) entry added
82 Add a mapping between the a distinguished name and multiple local
84 names:
85 % grid-mapfile-add-entry -dn "/DC=org/DC=example/DC=grid/CN=Joe User" juser" local1 local2
87 Modifying /home/juser/.gridmap ...
88 /home/juser/.gridmap does not exist... Attempting to create /home/juser/.gridmap
89 New entry:
90 "/DC=org/DC=example/DC=grid/CN=Joe User" local1,local2
91 (1) entry added
92
94 The following environment variables affect the execution of
95 grid-mapfile-add-entry:
96 GRIDMAP
98 Path to the default gridmap to modify
99
101 The following files affect the execution of grid-mapfile-add-entry:
102 /etc/grid-security/grid-mapfile
104 Path to the default gridmap to modify if GRIDMAP environment
105 variable is not set.
106
108 grid-mapfile-check-consistency(8), grid-mapfile-delete-entry(8)
109
111 Copyright © 1999-2016 University of Chicago
112Grid Community Toolkit 6 08/21/2020 GRID-MAPFILE-ADD-(8)