gLite Information System

Products

  • BDII, Glue model, Service info provider, site info provider, Infosys test suit, two cli (lcg-info and lcg-infosites)

Service Reference Card

Daemons running

  • /usr/sbin/slapd -f /etc/bdii/bdii-slapd.conf -h ldap://0.0.0.0:2170 -u ldap
  • /usr/bin/python /usr/sbin/bdii-update -c /opt/bdii/etc/bdii.conf -d

Init scripts and options (start|stop|restart|...)

  • /etc/init.d/bdii (start|stop|restart|condrestart|status)

Configuration files location with example or template

* See the configuration section in the BDII Documentation.

Logfile locations (and management) and other useful audit information

  • /var/log/bdii/bdii-update.log, the verbosity is set using a configuration parameter. See the configuration section in the BDII Documentation.

Open ports

  • 2170

Possible unit test of the service

  • Unit tests and functionality tests are available. Please contact the developers for more details.

Where is service state held (and can it be rebuilt)

  • The state is held in the LDAP database. It can be rebuilt by restarting the service.

Cron jobs

  • A Cron job runs to periodically renew the BDII proxy.

Security information

Access control Mechanism description (authentication & authorization)

  • The database is world readable but only the root user can make modifications.

How to block/ban a user

* The database is world readable. All users can be blocked/banned by stopping the service.

Network Usage

  • The slapd service running requires network access. The service can have a high network usage, due to the amount of information about the infrastructure they keep and provide.

Firewall configuration

  • Port 2170/TCP port needs to be open. The firewall configuration should allow to access this port from everywhere in the Internet. A example for IPTABLES configuration is: -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 2170 -j ACCEPT

Security recommendations

Security incompatibilities

None currently known

List of externals packages that are not maintained by the supported OS.

None

Members

Edit | Attach | Watch | Print version | History: r5 < r4 < r3 < r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions...
Topic revision: r2 - 2011-06-07 - LaurenceField
 
    • Cern Search Icon Cern Search
    • TWiki Search Icon TWiki Search
    • Google Search Icon Google Search

    EMI All webs login

This site is powered by the TWiki collaboration platform Powered by PerlCopyright & 2008-2019 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback