File: Adding-or-Modifying-Policies.html

package info (click to toggle)
krb5 1.4.4-7etch8
  • links: PTS
  • area: main
  • in suites: etch
  • size: 49,188 kB
  • ctags: 25,838
  • sloc: ansic: 270,358; exp: 21,157; makefile: 10,635; sh: 6,403; yacc: 2,515; perl: 1,925; cpp: 743; awk: 449; python: 379; asm: 248; lex: 190; sed: 172; csh: 147
file content (58 lines) | stat: -rw-r--r-- 2,234 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
 
<html lang="en">
<head>
<title>Kerberos V5 System Administrator's Guide</title>
<meta http-equiv="Content-Type" content="text/html">
<meta name="description" content="Kerberos V5 System Administrator's Guide">
<meta name="generator" content="makeinfo 4.5">
<link href="http://www.gnu.org/software/texinfo/" rel="generator-home">
</head>
<body>
<div class="node">
<p>
Node:<a name="Adding%20or%20Modifying%20Policies">Adding or Modifying Policies</a>,
Next:<a rel="next" accesskey="n" href="Deleting-Policies.html#Deleting%20Policies">Deleting Policies</a>,
Previous:<a rel="previous" accesskey="p" href="Retrieving-the-List-of-Policies.html#Retrieving%20the%20List%20of%20Policies">Retrieving the List of Policies</a>,
Up:<a rel="up" accesskey="u" href="Policies.html#Policies">Policies</a>
<hr><br>
</div>

<h4 class="subsection">Adding or Modifying Policies</h4>

<p>To add a new policy, use the kadmin <code>add_policy</code> command, which
requires the "add" administrative privilege.  The syntax is:

<pre class="smallexample">     <b>add_policy</b> [<i>options</i>] <i>policy_name</i>
     </pre>

<p>To modify attributes of a principal, use the kadmin <code>modify_policy</code>
command, which requires the "modify" administrative privilege.  The
syntax is:

<pre class="smallexample">     <b>modify_policy</b> [<i>options</i>] <i>policy_name</i>
     </pre>

<p><code>add_policy</code> has the alias <code>addpol</code>. 
<code>modify_poilcy</code> has the alias <code>modpol</code>.

<p>The <code>add_policy</code> and <code>modify_policy</code> commands take the
following switches:

     <dl>
<dt><b>-maxlife </b><i>time</i><b></b>
     <dd>Sets the maximum lifetime of a password to <i>time</i>.

     <br><dt><b>-minlife </b><i>time</i><b></b>
     <dd>Sets the minimum lifetime of a password to <i>time</i>.

     <br><dt><b>-minlength </b><i>length</i><b></b>
     <dd>Sets the minimum length of a password to <i>length</i> characters.

     <br><dt><b>-minclasses </b><i>number</i><b></b>
     <dd>Requires at least <i>number</i> of character classes in a password.

     <br><dt><b>-history </b><i>number</i><b></b>
     <dd>Sets the number of past keys kept for a principal to <i>number</i>. 
</dl>

</body></html>