1
.\" In .TH, FOO should be all caps, SECTION should be 1-8, maybe w/ subsection
2
.\" other parms are allowed: see man(7), man(1)
4
.\" This template provided by Tom Christiansen <tchrist@jhereg.perl.com>.
6
.TH LCMAPS_VOMS_LOCALGROUP.MOD 8 "March 7, 2012" "Stichting FOM/Nikhef" "Site Access Control"
8
lcmaps_voms_localgroup.mod \- LCMAPS plugin to switch user identity based on VOMS credentials by local groups
12
.B lcmaps_voms_localgroup.mod
15
.RB [ --map-to-secondary-groups ]
18
.IR "number of minimal mappings" ]
22
The VOMS localgroup acquisition plugin is a 'VOMS-aware' plugin. It uses the
23
VOMS information to gather primary and secondary Group IDs. This is
24
accomplished by matching VOMS FQANs in the so-called groupmapfile (gridmapfile
25
style) with the credentials presented by the user. The resulting list of groups
26
will be looked up in the /etc/groups and/or LDAP directories to determine which
27
Group IDs to be added as a mapping result.
29
When enabled, the plug-in will map all the FQANs of the user to secondary Group IDs. There will be no primary Group ID set by this plug-in. This option is off by default, thus by default the plug-in will always set the first FQAN
33
.BI "-groupmapfile " groupmapfile
34
This option is used to determine the groupmapfile path. The plug-in will open the file and use the content for the FQAN to Group ID mapping. The same formatting rules of the grid-mapfile apply to the groupmapfile. Provide a full path.
36
.BI "--map-to-secondary-groups"
37
When enabled, the plug-in will map all the FQANs of the user to secondary Group IDs. There will be no primary Group ID set by this plug-in when enabled.
40
When enabled, a failure will be triggered if not all of the FQANs could be mapped to primary or secondary Group IDs.
42
.BI "-mapmin " "number of minimal mappings"
43
When set the \fBnumber of minimal mappings\fR will be enforced by the plug-in to ensure that at least this number of FQAN to Group ID mappings has occured. When absent...
54
Please report any errors to the Nikhef Grid Middleware Security Team
55
<grid-mw-security-support@nikhef.nl>.
60
LCMAPS and the LCMAPS plug-ins were written by the Grid Middleware Security Team
61
<grid-mw-security@nikhef.nl>.