
<div dir="ltr">Hi, <div>I&#39;ve followed the recipe (<a href="https://github.com/OpenAttestation/OpenAttestation/wiki/OAT-for-RHEL-Recipe">https://github.com/OpenAttestation/OpenAttestation/wiki/OAT-for-RHEL-Recipe</a>) but didn&#39;t get it to run yet;</div>

<div>I think a step is missing -- the AIK is not available is /usr/share/oat-client (it was not available in /var/lig/oat-appraiser/ClientFiles either); </div><div>when I try to run provisioner.sh, I get the following:</div>

<div><div><span class="" style="white-space:pre">        </span></div><div><div>provisioner.sh: line 7: systemctl: command not found</div><div>### ecStorage = NVRAM###</div><div>Performing TPM provisioning...710</div><div>DONE</div>

<div>Successfully initialized TPM</div><div>Performing HIS identity provisioning...FAILED</div><div>java.util.NoSuchElementException</div><div>        at java.util.StringTokenizer.nextToken(StringTokenizer.java:349)</div>

<div>        at gov.niarl.his.privacyca.TpmModule.executeVer2Command(TpmModule.java:215)</div><div>        at gov.niarl.his.privacyca.TpmModule.collateIdentityRequest(TpmModule.java:292)</div><div>        at gov.niarl.his.privacyca.HisIdentityProvisioner.main(HisIdentityProvisioner.java:225)</div>

<div>Failed to receive AIC from Privacy CA, error 1</div><div>Registering identity with server...FAILED</div><div>java.io.FileNotFoundException: /usr/share/oat-client/aik.cer (No such file or directory)</div><div>        at java.io.FileInputStream.open(Native Method)</div>

<div>        at java.io.FileInputStream.&lt;init&gt;(FileInputStream.java:137)</div><div>        at java.io.FileInputStream.&lt;init&gt;(FileInputStream.java:96)</div><div>        at gov.niarl.his.privacyca.TpmUtils.certFromFile(TpmUtils.java:612)</div>

<div>        at gov.niarl.his.privacyca.HisRegisterIdentity.main(HisRegisterIdentity.java:99)</div><div>Failed to register identity with appraiser, error 1</div></div></div><div><br></div><div><br></div><div><br></div><div>

Thanks,</div><div>/Nicolae</div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On 27 October 2013 22:55, Nicolae Paladi <span dir="ltr">&lt;<a href="mailto:n.paladi@gmail.com" target="_blank">n.paladi@gmail.com</a>&gt;</span> wrote:<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Awesome, thanks! <div><br></div><div>I&#39;ll try this out in the morning<span class="HOEnZb"><font color="#888888"><div>

<br></div><div>/Nicolae</div></font></span></div></div><div class="HOEnZb"><div class="h5"><div class="gmail_extra"><br><br><div class="gmail_quote">On 27 October 2013 17:03, Wei, Gang <span dir="ltr">&lt;<a href="mailto:gang.wei@intel.com" target="_blank">gang.wei@intel.com</a>&gt;</span> wrote:<br>


<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Please refer to<br>

<a href="https://github.com/OpenAttestation/OpenAttestation/wiki/OAT-for-RHEL-Recipe" target="_blank">https://github.com/OpenAttestation/OpenAttestation/wiki/OAT-for-RHEL-Recipe</a>.<br>

<br>

Jimmy<br>

<div><div><br>

<br>

&gt; -----Original Message-----<br>

&gt; From: Doron Fediuck [mailto:<a href="mailto:dfediuck@redhat.com" target="_blank">dfediuck@redhat.com</a>]<br>

&gt; Sent: Sunday, October 27, 2013 11:53 PM<br>

&gt; To: Nicolae Paladi<br>

&gt; Cc: <a href="mailto:users@ovirt.org" target="_blank">users@ovirt.org</a>; Wei, Gang<br>

&gt; Subject: Re: [Users] Trusted Pools and CentOS 6 packages<br>

&gt;<br>

&gt;<br>

&gt;<br>

&gt; ----- Original Message -----<br>

&gt; &gt; From: &quot;Nicolae Paladi&quot; &lt;<a href="mailto:n.paladi@gmail.com" target="_blank">n.paladi@gmail.com</a>&gt;<br>

&gt; &gt; To: <a href="mailto:users@ovirt.org" target="_blank">users@ovirt.org</a><br>

&gt; &gt; Sent: Friday, October 25, 2013 7:16:30 PM<br>

&gt; &gt; Subject: Re: [Users] Trusted Pools and CentOS 6 packages<br>

&gt; &gt;<br>

&gt; &gt; Doron Fediuck &lt;dfediuck@...&gt; writes:<br>

&gt; &gt;<br>

&gt; &gt; &gt;<br>

&gt; &gt; &gt; ----- Original Message -----<br>

&gt; &gt; &gt; &gt; From: &quot;Gianluca Cecchi&quot; &lt;gianluca.cecchi@...&gt;<br>

&gt; &gt; &gt; &gt; To: &quot;Doron Fediuck&quot; &lt;dfediuck@...&gt;<br>

&gt; &gt; &gt; &gt; Cc: &quot;Wei D Chen&quot; &lt;wei.d.chen@...&gt;, &quot;users&quot;<br>

&gt; &gt; &gt; &lt;users@...&gt;, &quot;Mei Yu&quot;<br>

&gt; &gt; &gt; &lt;mei.yu@...&gt;, &quot;Ofri Masad&quot;<br>

&gt; &gt; &gt; &gt; &lt;omasad@...&gt;, &quot;Gang Wei&quot; &lt;gang.wei@...&gt;<br>

&gt; &gt; &gt; &gt; Sent: Tuesday, June 11, 2013 2:29:54 AM<br>

&gt; &gt; &gt; &gt; Subject: Re: [Users] Trusted Pools and CentOS 6 packages<br>

&gt; &gt; &gt; &gt;<br>

&gt; &gt; &gt; &gt; On Mon, Jun 10, 2013 at 6:36 PM, Doron Fediuck wrote:<br>

&gt; &gt; &gt; &gt;<br>

&gt; &gt; &gt; &gt; &gt;<br>

&gt; &gt; &gt; &gt; &gt; That&#39;s nice of Jimmy to assist.<br>

&gt; &gt; &gt; &gt; &gt; Are you trying out the oVirt TCP feature or will you be using OAT<br>

&gt; &gt; &gt; &gt; &gt; for something else?<br>

&gt; &gt; &gt; &gt;<br>

&gt; &gt; &gt; &gt; Actually the need was for OpenStack environment, but I&#39;m going to test<br>

&gt; &gt; &gt; &gt; oVirt node too.<br>

&gt; &gt; &gt; &gt;<br>

&gt; &gt; &gt; &gt; Gianluca<br>

&gt; &gt; &gt; &gt;<br>

&gt; &gt; &gt;<br>

&gt; &gt; &gt; Thanks for the info.<br>

&gt; &gt; &gt; Note that openstack and ovirt are using the same OAT infra,<br>

&gt; &gt; &gt; but implementing the logic in a different way.<br>

&gt; &gt; &gt; Let me know f you have a specific use case so I&#39;ll be able to<br>

&gt; &gt; &gt; provide additional details.<br>

&gt; &gt; &gt;<br>

&gt; &gt;<br>

&gt; &gt;<br>

&gt; &gt; Hi,<br>

&gt; &gt;<br>

&gt; &gt; I have an environment where the oat-server is on a Ubuntu, while<br>

&gt; &gt; the compute hosts are CentOS servers.<br>

&gt; &gt;<br>

&gt; &gt; I have installed the packages for the oat-server from the Ubuntu<br>

&gt; &gt; repositories, and there is indeed a &quot;ClientFiles&quot; directory, but<br>

&gt; &gt; but it lacks installation files (just the following:<br>

&gt; &gt; endorsement.p12  install.bat  lib  OAT.properties<br>

&gt; OATprovisioner.properties<br>

&gt; &gt; PrivacyCA.cer  TrustStore.jks)<br>

&gt; &gt;<br>

&gt; &gt;<br>

&gt; &gt; The questions are:<br>

&gt; &gt; * are there packages for centos 6.4 available?<br>

&gt; &gt; * how can the client files be generated by the oat-server?<br>

&gt; &gt;<br>

&gt; &gt; cheers,<br>

&gt; &gt; /Nicolae<br>

&gt; &gt;<br>

&gt;<br>

&gt; Hi Nicolae,<br>

&gt; Adding Jimmy for RPM updates.<br>

&gt; Jimmy, are you packaging the OAT for el6 and where can it be found?<br>

&gt;<br>

&gt; Also, some of the issues are available here:<br>

&gt; <a href="http://www.ovirt.org/Trusted_compute_pools_deployment" target="_blank">http://www.ovirt.org/Trusted_compute_pools_deployment</a><br>

&gt;<br>

&gt; Doron<br>

</div></div></blockquote></div><br></div>

</div></div></blockquote></div><br></div>