GT4 PERMIS Authorisation ServiceThis is an Authorisation Service that can be deployed with the Globus Toolkit from version 4.0. As a GT4 Authorisation Grid Service, it is centralised and queried remotely. This is especially useful in widely distributed resources, as then the security system has a single PERMIS Authorisation Service to configure. This service can also be configured to make decisions based on attributes returned from a Shibboleth IDP when used in conjunction with the GridShib for Shibboleth and GridShib for Globus Toolkit plugins.
Follow the Installation Intructions to download and deploy the GT4 PERMIS Authorisation Service. A new installation document, including the use of VOMS attributes is available here. This is the recommended document if you are getting started with GT4.
GT4 PERMIS PDP/PIP (Credential Validation Service)PERMIS can be integrated into GT4 as a customised PDP and a group of customised PIPs (Subject PIP, Resource PIP, Action PIP and Environment PIP). When PERMIS authorisation service acting as a GT4 PDP, it runs locally and is scattered around with every protected grid service. Each GT4 PIP can be configured along with any GT4 PDP to protect any grid service. Literally, the Subject or Resource PIP provides a GT4 PERMIS Credential Validation Service, which will validate the credentials (i.e. X509 Attribute Certificates) of the user or the protected resource and return the user's or resource's validated attributes in the form of XACML request context to the GT4 PEP.
Follow the Installation
Intructions to download use the GT4 PERMIS PDP/PIP (Credential Validation Service).
Last updated 20 July 2011