51st EUGridPMA Virtual meeting

8 Feb 2021, 09:30 → 10 Feb 2021, 12:45 Europe/Amsterdam

https://eugridpma.org/z/51 (Nikhef)

Minutes 51st-EUGridPMA-meeting-notes-Monday.pdf

pictures eugridpma_group_photo.jpg

Monday, 8 February

09:30 → 09:45 Welcome from local host, agenda, minutes last meeting, note taker, introductions

Slides 51st-EUGridPMA-intro.pdf

09:45 → 10:05 APGridPMA: developments in the Asia Pacific region

Speaker: Dr Eric Yen (ASGC Academia Sinica)

10:05 → 10:20 Self-audit review & status of suspended authorities

Speaker: Cosmin Nistor (ROSA)

10:20 → 10:40 CA Updates I: CERN update

Speaker: Hannah Short (CERN)

Motivation for change: several Grid Services are being moved onto OpenShift and require Grid Certificates for integration with the Infrastructure. The current CP/CPS only supports issuing certificates to machines and services, and has a tight dependency on CERN’s network database (LANDB). These changes are to allow us to issue certificates to resources such as application.web.cern.ch in a trustworthy manner.

 

Summary of changes:

• Specifying that the CERN Grid CA issues Resource Certificates to CERN Resources, defined as: “CERN resources: computers, containers and services registered in CERN’s central resource databases.” This is to allow us to issue certificates to web services such as wlcg-iam.web.cern.ch that run on centrally managed web infrastructure
• Replacing references to CERN’s Network Database (LANDB) with CERN’s Resource Databases (there are several)
• Replacing him/his/he with them/their/they
• Updating CA contacts

10:40 → 11:00 Coffee

11:00 → 11:15 WISE SCI – Baseline AUP update

Speaker: David Kelsey (RAL STFC)

Slides Kelsey8feb21.pptx

11:15 → 12:30 The Implements Guide to SCIv2

Speaker: Uros Stevanovic (KIT)

document https://docs.google.com/document/d/1O2UTrKD70erpmO5DVIgn_1xpFX3NfVae_BGKPHoFuWo/edit#

Slides EUGRIDPMA_2021_02_SCI.pdf EUGRIDPMA_2021_02_SCI.pptx

Tuesday, 9 February

09:30 → 10:00 Enabling Communities: progress and next steps

Speaker: Maarten Kremers (SURF)

document https://docs.google.com/document/d/1fMV0DkurhrEYx24f2HNcmRTvUQkAflKbkf1sayep-4k

Slides 20210208-EnCo-EUGridPMA51.pdf 20210208-EnCo-EUGridPMA51.pptx

10:00 → 10:30 Attribute Authority Operations v2 – clarifying AA operations guidance for a non-physical world

Speaker: David Groep (Nikhef)

document https://docs.google.com/document/d/1-hbqSpQegm7UaC_wupFzFMm19Q024UPkG-8Jwokkmzc/edit#

10:30 → 10:45 Coffee

10:45 → 11:30 Attribute Authority Operations v2 – clarifying AA operations guidance for a non-physical world II

11:30 → 11:45 Coffee

11:45 → 12:15 OpenID Connect Federation

Speaker: Jouke Roorda (Nikhef)

12:15 → 12:25 52nd EUGridPMA meeting (May-June)

Wednesday, 10 February

09:30 → 10:00 CA Update II: TR-Grid

Speaker: Feyza Eryol (TUBITAK-ULAKBIM)

Slides TRGridCA-SelfAudit-2021-reprinted.pdf

10:00 → 10:15 Assurance Update

Speaker: Jule Ziegler (LRZ)

10:15 → 11:00 Coffee

11:00 → 11:30 Jens' Soapbox

Speaker: Jens Jensen (RAL STFC)

Slides 202102-virtual.pptx

11:30 → 11:45 Coffee

11:45 → 12:30 TAGPMA – and the WotBAN&AZ Token-based authorization report

Speaker: Derek Simmel (PSC)

Slides TAGPMA-Update-20210210-EUGridPMA.pdf