/etc/root/hostcert.conf is in root-system-common 5.34.14-1build1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 | ###
### Format:
###
### <certificates_dir> <host_cert_file> <host_cert_key> <grid_mapfile>
###
### <certificate_dir> : directory with certificates of the recognized CAs
### (default: /etc/grid-security/certificates)
###
### <host_cert_file> : host certificate file
### (defaults: /etc/grid-security/root/rootcert.pem,
### /etc/grid-security/hostcert.pem)
###
### <host_cert_key> : host key file
### (default: /etc/grid-security/root/rootkey.pem,
### /etc/grid-security/hostkey.pem)
###
### <grid_mapfile> : file for mapping local usernames to certificate subjects
### (default: /etc/grid-security/grid-mapfile)
###
### The wild card '*' can be used to leave a default for a field.
###
### Lines can be commented by a '#' in the first column (all the example
### below are commented)
###
### A few examples
###
### To use /etc/grid-security/grid-mapfile1 as map file
# * * * /etc/grid-security/grid-mapfile1
###
### To use the ldap service certificate
# * /etc/grid-security/ldap/ldapcert.pem /etc/grid-security/ldap/ldapkey.pem
###
### To use host certificates from a non standard location
# * /etc/grid-security/cernCA/hostcert.pem /etc/grid-security/cernCA/hostkey.pem
###
### When running as non-root only fields 1st and 4th are meaningful
# /afs/cern.ch/user/g/ganis/.globus/certificates * * /afs/cern.ch/user/g/ganis/.globus/grid-mapfile
###
### When running as 'root' and user 'ganis' proxies should be used
# * /home/ganis/.globus/usercert.pem /home/ganis/.globus/userkey.pem
|