Once a year, you must renew your DoE grid certificate. You'll get renewal notices when the time comes. Once you've gone through their process to get the new certificate, you must install it properly. The instructions that follow assume you have your new certificate loaded into your web browser.
.p12 extension.p12 file to a CSL machineopenssl pkcs12 -in <CERT_P12_FILE> -clcerts -nokeys -out $HOME/.globus/usercert.pem
openssl pkcs12 -in <CERT_P12_FILE> -nocerts -out $HOME/.globus/userkey.pem
usercert.pem and userkey.pem files to
other machines as needed