From BeSTGRID
To keep track of the host certificates for all the grid gateways I administer, I have decided to put them together in a single table to see the due dates for renewing the certificates. This is the list of certificates for Canterbury (with Otago to follow). I encourage other grid admins within BeSTGRID to create a similar table for their systems.
[edit] Canterbury Grid Gateway: Current certificates
| Host | Purpose | Expires | Action (+ reason)
|
| hpcgrid1 | IBM p520 - GridFTP server for HPC | 2012-08-22 | Renew - production service
|
| grid | User client tools | 2012-12-13 | Renew - may be useful
|
| gridgwtest | Testing grid sw | 2012-12-13 | Renew - regular test system
|
| ng2dev | ng2 development | 2012-12-13 | Renew
|
| ng2hpcdev | ng2hpc development | 2012-12-13 | Renew
|
| ng2sge | SGE cluster Ng2 gateway | 2012-12-13 | Renew - production service
|
| ng2hpc | HPC cluster Ng2 gateway | 2012-12-13 | Renew - production service
|
| ngdata | iRODS - BeSTGRID DataFabric df.bestgrid.org | 2012-08-22 | Renew
|
| nggums | GUMS authentication server | 2012-12-13 | Renew - production service
|
| ngportal | GridSphere portal | 2012-12-13 | Renew - production service
|
| ngportaldev | GridSphere development portal | 2012-12-13 | Renew - may be useful
|
| ng1 | Ng1 gateway (GRAM5 experimental) for NGCompute | 2012-12-13 | Renew - regular testing system
|
| ng2 | Ng2 gateway (GT4) for NGCompute | 2012-12-13 | Renew - production service
|
| ngportal | GoDaddy frontend certificate | 2013-12-16 | Renew when needed
|
| nggums | GoDaddy frontend certificate | 2013-12-16 | Renew when needed
|
Action items:
- Revisit this list by December 2011 (renew all certificates on Canterbury gw)
- Apply for new certificates: gram5bgp.canterbury.ac.nz, gram5p7.canterbury.ac.nz (+dev for both)
for I in container davis irods ; do "cp" hostcert.pem ${I}cert.pem ; "cp" hostkey.pem ${I}key.pem ; done
for I in container ; do "cp" hostcert.pem ${I}cert.pem ; "cp" hostkey.pem ${I}key.pem ; done
[edit] Other NZ grid Gateways
- This lists other sites the maintainer of this page (Vladimir Mencl) looks after. Administrators of other sites are welcome to either list their sites here (preferred) or create a similar page elsewhere.
| Host | Purpose | Expires | Action (+ reason)
|
| ng2.aut.ac.nz | AUT NG2 gateway | 2011-09-07 | Decommissioned
|
| nggums.aut.ac.nz | AUT GUMS server | 2012-12-13 | Renew - production service
|
| nggums.massey.ac.nz | Massey GUMS server | 2012-01-25 | Renew - production service
|
| ng2bestgrid.massey.ac.nz | Massey NG2 gateway for BeSTGRID cluster | 2012-05-09 | Renew - production service
|
| nggums.grid.otago.ac.nz | Otago GUMS server | 2012-05-09 | Renew - production service
|
| ng2maggie.grid.otago.ac.nz | Otago NG2 gateway for Maggie cluster | 2012-05-09 | Renew - production service
|
[edit] BeSTGRID Shibboleth Federation
| Host | Channel | Issuer | Expires | Comment
|
| idp.lincoln.ac.nz | https | Equifax | 2013-05-13
|
| wayf.bestgrid.org | https | AusCERT | 2011-12-04
|
| idp.bestgrid.org | front | AusCERT | 2011-12-04
|
| idp.bestgrid.org | back | self-signed | 2029-12-01
|
| www.bestgrid.org | front | AusCERT | 2011-12-04
|
| www.bestgrid.org | back | self-signed | 2019-11-24
|
| openidp.test.bestgrid.org | front | AusCERT | 2011-12-04
|
| openidp.test.bestgrid.org | back | self-signed | 2029-12-01
|
| wiki.test.bestgrid.org | front | AusCERT | 2011-12-04
|
| wiki.test.bestgrid.org | back | self-signed | 2019-11-23
|
| wayf.test.bestgrid.org | https | AusCERT | 2011-12-04
|
| gridsphere.test.bestgrid.org | front | BeSTGRID CA | 2010-11-21
|
| gridsphere.test.bestgrid.org | back | MAMS Level 1 CA | 2009-12-15
|
| idp.canterbury.ac.nz | front | Digicert | 2012-05-30
|
| idp20test.canterbury.ac.nz | front | MAMS Level 1 CA | 2019-06-02
|
| wiki.canterbury.ac.nz | front | Thawte | 2010-12-18
|
| wiki.canterbury.ac.nz | back | self-signed | 2030-04-06
|
| wikitest.canterbury.ac.nz | front | ipsCA | 2011-05-25
|
| wikitest.canterbury.ac.nz | back | self-signed | 2030-04-06
|
[edit] Decommissioned systems
| Host | Channel | Issuer | Expires | Comment
|
| idp-test.canterbury.ac.nz | front+back | MAMS Level 1 CA | 2009-08-21
|
| confluencewiki.canterbury.ac.nz | front+back | MAMS-Level-1 | 2009-11-25
|
| avcc.karen.net.nz | front | ipsCA | 2010-05-27
|
| avcc.karen.net.nz | back | CAUDIT | 2010-01-13
|
- Schedule:
- September 2009: Renew front-end ipsCA certificate for www.bestgrid.org
- Note 3: Now that idp.bestgrid.org uses an ipsCA front-end certificate on the back-channel - we might remove APACGrid CA from the BeSTGRID Federation metadata.
