next up previous
Next: Getting Help Up: Service Installation Previous: Service Installation

Testing

A simple test script to test the functionality of the installation is provided in the edg-java-security-test-1.5.10-1.noarch.rpm. It is $EDG_LOCATION/sbin/edg-java-security-tomcat-test.sh and it takes two arguments, the server name (like server.yourdomain.com) and the secure port (8443 in default installations).

The script uses your proxy certifiate to connect to the server and tries to do a ssl handshake. It prints all the information it finds about your and the server security settings.

After default installation on the machine you can use $EDG_LOCATION/sbin/edg-java-security-tomcat-test.sh localhost 8443 to connect, but make sure you run it as user with proxy certificate generated with voms-proxy-init or grid-proxy-init. You can, if you wish, also define some other proxy certificate by setting the X509_PROXY_FILE environment variable to point to the proxy certificate file.

If there are problems, check what the test script prints as your certificate chain, what CA certificates are accepted by which side. If these don't help you can edit the $EDG_LOCATION/etc/edg-java-security/log4j-trustmanager.properties and replace the line "log4j.logger.org.edg.security=WARN, fileout" with "log4j.logger.org.edg.security=DEBUG, fileout". This will enable the detailed loggin of everything in the edg-java-security authentication.


next up previous
Next: Getting Help Up: Service Installation Previous: Service Installation
2004-05-05