Two file locations are defined in the policy file for this plugin:
# grid-mapfile gridMapFilePath="/etc/grid-security/grid-mapfile" storageAuthzPath="/etc/grid-security/storage-authzdb"
The grid mapfile is the same as that used in other applications. It can be created in various ways, either by connecting directly to VOMS or GUMS servers, or by hand.
Each line contains two fields: a DN (Certificate Subject) in quotes, and the username it is to be mapped to.
"/DC=org/DC=doegrids/OU=People/CN=Gina Carlson 584065" uscms01
When using the grid-mapfile plugin, the
storage-authzdb file must also be
configured. See the section called “