[slurm-dev] Re: slurm support for Redhat Identity Management

Wed, 27 Jul 2016 19:03:46 -0700 

I think there is a minor error on the testing of "dlopen" in the configure 
script of slurm 16.05.2. The configure script should come from the 
configure.ac, but I haven't dug deeper yet.

diff --git a/configure b/configure
index 777c649..e21c242 100755
--- a/configure
+++ b/configure
@@ -19285,7 +19285,7 @@ if ${ac_cv_lib__dlopen+:} false; then :
   $as_echo_n "(cached) " >&6
 else
   ac_check_lib_save_LIBS=$LIBS
-LIBS="-l  $LIBS"
+LIBS="-ldl"
 cat confdefs.h - <<_ACEOF >conftest.$ac_ext
 /* end confdefs.h.  */

Hello Aaron,
Thank you very much for your information. We may try to integrate the 
authorization of slurm services into IPA.

Dashi Cao
________________________________________
From: Aaron Knister <[email protected]>
Sent: Thursday, July 28, 2016 8:48:40 AM
To: slurm-dev
Subject: [slurm-dev] Re: slurm support for Redhat Identity Management

I think the short answer is yes/no/kinda.

I think there's a couple parts to this. Munge is just used to assert that you 
are who you say you are. You could certainly write your own auth plugin that 
uses perhaps the Kerberos or X509 capabilities of Redhat Identity Management. 
If you use Kerberos you'll need to deal with service principals and token 
lifespan but if you're already accustomed to doing that it might not be a big 
deal. Here's the docs for writing an authentication plugin 
http://slurm.schedmd.com/authplugins.html

The other part to this as far as user identities are concerned comes into play 
when using the accounting database. That's really the only account database in 
SLURM that would need feeding. You could write some scripts to populate your 
accounting database based on information in the red hat identity management 
database. Much of this would be site specific though, I suspect.

So all the hooks are there to make this work, you'd just need the glue to pull 
it all together.

Sent from my iPhone

On Jul 27, 2016, at 8:23 PM, Da Shi Cao 
<[email protected]<mailto:[email protected]>> wrote:


Hello everyone,
I wonder if slurm currently support the authentication/authorization of Redhat 
Identity Management? So that munge is not needed, and slurm service access is 
under the control of Redhat Identity Management!


Best Regards
Dashi Cao

Reply via email to