OSG Certificate Authority Distribution
The OSG Certificate Authority Distribution contains information about Certificate Authorities (CAs) in use in OSG.
The OSG CA Distribution contains:
For additional details, see the distribution site
and change log
CA Certificate Installation and Update
provides you with details of various options to install the Certificate Authority (CA) certificates and have up-to-date certificate revocation list (CRL) using OSG RPMs.
Effective 25 June 2010 the old FNAL_KCA has been removed, in OSG CA package version 1.15.
Beginning in May , 2010 OSG has started to provide a CA distribution for the integration test bed (ITB) separate
from the production OSG distribution described below. Information about the ITB release is provided at http://software-itb.grid.iu.edu/
- Production services on OSG should NOT install (or reference via yum or apt) the ITB
version of the CA distribution since it may, at times, contain an untrustworthy CA certificate for testing purposes!
Effective March 10, 2009, the OSG Security Team has removed the following unused non-IGTF CAs from the
OSG CA distribution:
- PSC Kerberos CA (290a3b29)
- PSC Root CA (9b88e95b)
- PSC Hosts CA (acc06fda)
- SDSC (3deda549)
- NPACI (b89793e4)
- TACC (9a1da9f9)
- old NCSA CA (4a6cd8b1)
If you are aware of any use of these CAs in OSG, so that they should
continue to be included in the OSG CA distribution, please notify
Topic revision: r42 - 06 Dec 2016 - 18:12:36 - KyleGross