Index of /distribution/igtf/current
Name Last modified Size Description
![[DIR]](/icons/back.gif)
Parent Directory -
![[TXT]](/icons/text.gif)
CHANGES 27-Jun-2011 11:51 23K
![[ ]](/icons/unknown.gif)
GPG-KEY-EUGridPMA-RPM-3 27-Jun-2011 11:51 889
![[DIR]](/icons/folder.gif)
accredited/ 27-Jun-2011 11:51 -
apt/ 27-Jun-2011 11:51 -
dists/ 27-Jun-2011 11:44 -
experimental/ 27-Jun-2011 11:51 -
headers/ 27-Jun-2011 11:51 -
![[ ]](/icons/compressed.gif)
igtf-policy-installa..> 27-Jun-2011 11:48 158K
igtf-policy-installa..> 27-Jun-2011 11:49 189
repodata/ 27-Jun-2011 11:51 -
version.txt 27-Jun-2011 11:51 21
worthless/ 27-Jun-2011 11:51 -
IGTF Distribution of Authority Root Certificates
------------------------------------------------------------------------------
This is version 1.39 of the distribution, built on Monday, 27 Jun, 2011
The distribution contains root certificates and related meta-information:
Certificate Revocation List (CRL) locations, contact information, and signing
policies. This distribution is subject to the IGTF Federation Document
and the appropriate charters and authentication profiles.
Please refer to your local PMA (EUGridPMA, APGridPMA or TAGPMA) for more
information.
The IGTF itself does not provide identity assertions but instead
asserts that - within the scope of its charter - the certificates issued by
the Accredited Authorities meet or exceed the relevant guidelines.
PLEASE NOTE that this assertion extends only to accredited authorities,
i.e., those authorities of which the trust anchor is contained in the
"accredited/" subdirectory of this distribution!
You can install the trust anchors in the following ways:
* install all RPM or tar-ball packages from the "accredited/RPMS/" resp.
"accredited/tgz/" directories manually. These RPMs correspond to all
accredited CAs from all profiles.
* use a RPM package manament system like "yum" to install the
meta-RPM "ca_policy_igtf-PROFILE-1.39-1.noarch.rpm"
where PROFILE is the name of the profile (e.g., classic, mics or slcs)
You should install ALL policy bundles corresponding to the
authentication profiles you want to accept.
* install all authorities with the installation tarball bundle
"igtf-policy-installation-bundle-1.39.tar.gz", using the
"./configure --with-profile=NAME && make && make install" mechanism.
This tarball can be found in the "accredited/" directory.
The tar-ball containts a README.txt with detailed instructions.
You can specify multiple "--with-profile" arguments to include
more than CAs from one authentication profile.
Please make sure you validate the correctness of the trust anchors with the
TERENA Academic CA Repository (https://www.tacar.org/) where possible.
This distribution contains, for your convenience, also selected other CAs
in the "worthless/" and "experimental/" directories. These are NOT
part of the accredited trust fabric and you install these at your own risk.
Comments and suggestions for improvement of this distribution are welcome;
please send them to <info@eugridpma.org>. For more information, see
the web site:
http://www.gridpma.org/
http://www.eugridpma.org/
http://www.apgridpma.org/
http://www.tagpma.org/
[this is release 1]