Versions Compared

Old Version 2

changes.mady.by.user Unknown User (plgzacz)

Saved on

compared with

New Version 3

changes.mady.by.user Unknown User (plgszopa)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents
maxLevel2

Basic information

Certificate makes access to Portal PLGrid and services more easier. It helps with user identification and gives access without login and password authentication. Certificate management is in Certyfikaty menu

Certificates are used to confirm users' identity within PLGrid Infrastructure. They allow access to some of PLGrid services without requiring user's login and password. Some applications or tools require a certificate.

You can manage your certificates in Certyfikaty menu.

Two types of certificates are recognized in PLGrid and can be managed in PLGrid portalAt PLGrid portal are two types of certificates:

  • Simple CA
  • Polish Grid CA

 

Simple CA certificate

Simple CA certificate is fullly managed at PLGrid portal. It can be issued, downloaded or revoked there. 

Issue Simple CA certificate

You can generate your certificate using the "Wygeneruj certyfikat" button. You will be required to provide your PLGrid password, which becomes your certificate password as well. After providing the password click "Generuj".

After the certificate is generated, it is registered in PLGrid portal. You can download your certificate in p12 format (containing certificate and private key) by using the link "Zapisz certyfikat na dysku" issued by PLGrid Portal and needs additional authentication. Option "Wygeneruj certyfikat" generates a Simple CA. User must enter password set up during registration. User has to download a compress archived in p12 format which contains certificate and private key


Info

Registration of certificate in PLGrid Portal causes it to save in:

  • keyFS - that allows for use of certificate on UI without having to upload it there
  • OpenID - which allows for passing it to web-based services that require a certificate to generate proxy

In the future it will be possible to After this step User should see notification with location of Simple CA certificate. It saves as a keyFS and in Open ID and it can be used for auto-login to PLGrid's services .To use auto-login option User should install with the certificate (registration at web browser management will be required).

Revoke Simple CA certificate


There is a possibility to revoke a Simple CA certificate in PLGrid portal.

If your certificate has been compromised User you should revoke the current certificate and generate another one.

This is also an option for other circumstances like changing User's personalities or if User no longer needs that kind of authorization.

...