[GFARM LOGO] documents > User's Manual > Shared Secret Authentication

Shared Secret Authentication

English | Japanese

This document describes the settings required for shared secret authentication in Gfarm.

Shared secret key

It is necessary to create a shared secret key for each user, and distribute the key to all hosts. The default path is .gfarm_shared_key in the home directory. The location can be changed by shared_key_file directive in Gfarm config file.

A shared secret key is created by the gfkey command. 

$ gfkey -f -p 31536000
This creates a shared secret key valid for 31536000 seconds (= 365 days). This key needs to be distributed to all hosts with the same permission and owner at the same location.

Shared secret authentication can be used for gfsd and gfmd. A shared secret key of gfsd should be generated for _gfarmfs user, and distributed to all gfsd and gfmd hosts. A shared secret key of gfmd should be generated for _gfarmmd user, and distributed to all gfmd hosts.

SEE ALSO

gfarm2.conf(5)
Gfarm File System <gfarmfs at gmail.com>