next up previous contents
Next: Missing resources (cannot plan) Up: JOB Error Messages Previous: JOB Error Messages   Contents

grid-proxy-init (permission/passphrase)

Certification proxy initialization may fail for several reasons. When you copy your .pem files in ~/.globus/ verify file protections that must be as follows:

-rw-r--r--    1 lz grdtest     2217 Oct  3 15:34 usercert.pem
-r--------    1 lz grdtest     1135 Oct  3 15:34 userkey.pem
Note that userkey.pem must be readable only by the user that owns the file.
If either userkey.pem permissions are bad or your passphrase is wrong, you will get the following error message:

$ grid-proxy-init -valid 30:00
Your identity: /C=IT/O=ANY/OU=Personal Certificate/L=BBB/CN=Mm Lz/Email=M.@site
Enter GRID pass phrase for this identity:
ERROR: Couldn't read user key. This is likely caused by
either giving the wrong passphrase or bad file permissions
key file location: /home/lz/.globus/userkey.pem
Use -debug for further information.

More detailed information is given by the -debug option. You may use the debug option as default with the proxy commands. The printed information is brief and it is more or less meaningful depending on the failure reason. One situation in which the -debug option is very useful is when your proxy is missing or expired as shown below:

$ grid-proxy-info -debug

ERROR: Couldn't find a valid proxy.
globus_gsi_system_config.c:4538: globus_gsi_sysconfig_get_proxy_filename_unix:
Could not find a valid proxy certificate file location:
A file location for the proxy cert could not be found in:
1) env. var. X509_USER_PROXY=NULL
2) /tmp/x509up_u10009

luvisetto 2003-12-17