Maarten Litmaath

Ciao Davide, would it be possible to add an option to _prevent_ the automatic linking through the browser? That is, configure IAM _not_ to offer that functionality? It would allow...

Hi all, a user could still present the wrong IGTF certificate, or one from a problematic CA (e.g. based on a SHA-1 root that is not supported everywhere). Admins cannot...

OK & OK, thanks!

Hi all, without the private key, the user would be unable to use the certificate for anything. That leaves the door open to a mistaken DN, for which someone else...

Hi again, I think the described concerns would be sufficiently mitigated either by giving the option only to admins, or by requiring admins to approve / reject such requests.

Hi all, I insist we need that feature at least for VO admins. Yesterday, as VO admin, I again needed to ask a **known** user for their **known** certificate with...

While the API can indeed be used, that goes way beyond what most VO managers can be expected to deal with.

Hi again, here is an argument in favor of making this functionality also available to users (possibly with approval by a VO admin): in the last days I needed to...

Hi all, I think it is _wrong_ to rely on being able to create a CERN account: most DTeam members would only be able to create a light-weight account, which...

Hi all, as the target option has never been used in production at large scale if at all, we should be careful with "fixing" its behavior and in particular avoid...