Now users are correctly authenticated by certificate subject. With default settings, VOMS Admin authenticates clients by looking at the client certificate (subject,issuer) couple. A configuration flag was introduced in VOMS Admin 3.3.2 to authenticate only by certificate subject, but the fix worked only for VO administrators. This problem is now fixed.
For instruction on how to enable this feature, see the VOMS Admin 3.3.2 release notes.
Is now possible to disable membership expiration notifications. This kind of notification do not make sense in deployments, like at CERN, where a VO administrator cannot extend the lifetime of VO members.
To disable membership expiration notifications either:
A restart of the service is required.
Other improvements and fixes are listed below.
Update the packages and restart the service.
First upgrade to VOMS Admin version 3.2.0 and then to 3.4.1.
Follow the instructions in the VOMS System Administrator Guide.