File: Attributes.html

package info (click to toggle)
krb5 1.4.4-7etch8
  • links: PTS
  • area: main
  • in suites: etch
  • size: 49,188 kB
  • ctags: 25,838
  • sloc: ansic: 270,358; exp: 21,157; makefile: 10,635; sh: 6,403; yacc: 2,515; perl: 1,925; cpp: 743; awk: 449; python: 379; asm: 248; lex: 190; sed: 172; csh: 147
file content (67 lines) | stat: -rw-r--r-- 2,812 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
 
<html lang="en">
<head>
<title>Kerberos V5 System Administrator's Guide</title>
<meta http-equiv="Content-Type" content="text/html">
<meta name="description" content="Kerberos V5 System Administrator's Guide">
<meta name="generator" content="makeinfo 4.5">
<link href="http://www.gnu.org/software/texinfo/" rel="generator-home">
</head>
<body>
<div class="node">
<p>
Node:<a name="Attributes">Attributes</a>,
Next:<a rel="next" accesskey="n" href="Retrieving-a-List-of-Principals.html#Retrieving%20a%20List%20of%20Principals">Retrieving a List of Principals</a>,
Previous:<a rel="previous" accesskey="p" href="Retrieving-Information-About-a-Principal.html#Retrieving%20Information%20About%20a%20Principal">Retrieving Information About a Principal</a>,
Up:<a rel="up" accesskey="u" href="Retrieving-Information-About-a-Principal.html#Retrieving%20Information%20About%20a%20Principal">Retrieving Information About a Principal</a>
<hr><br>
</div>

<h5 class="subsubsection">Attributes</h5>

<p>To retrieve a listing of the attributes and/or policies associated with
a principal, use the <code>kadmin</code> <code>get_principal</code> command, which
requires the "inquire" administrative privilege.  The syntax is:

<pre class="smallexample">     <b>get_principal</b> <i>principal</i>
     </pre>

<p>The <code>get_principal</code> command has the alias <code>getprinc</code>.

<p>For example, suppose you wanted to view the attributes of the
principal <br> <code>jennifer/root@ATHENA.MIT.EDU</code>. 
  You would type:

<pre class="smallexample">     <b>shell%</b> kadmin
     <b>kadmin:</b> getprinc jennifer/root
     <b>Principal: jennifer/root@ATHENA.MIT.EDU
     Expiration date: [never]
     Last password change: Mon Jan 31 02:06:40 EDT 2002
     Password Expiration date: [none]
     Maximum ticket life: 0 days 10:00:00
     Maximum renewable life: 7 days 00:00:00
     Last modified: Wed Jul 24 14:46:25 EDT 2002 (joeadmin/admin@ATHENA.MIT.EDU)
     Last successful authentication: Mon Jul 29 18:20:17 EDT 2002
     Last failed authentication: Mon Jul 29 18:18:54 EDT 2002
     Failed password attempts: 3
     Number of keys: 2
     Key: vno 2, Triple DES cbc mode with HMAC/sha1, no salt
     Key: vno 2, DES cbc mode with CRC-32, no salt
     Attributes: DISALLOW_FORWARDABLE, DISALLOW_PROXIABLE
     Policy: [none]
     kadmin:</b>
     </pre>

<p>The <code>get_principal</code> command has a <code>-terse</code> option, which lists
the fields as a quoted, tab-separated string.  For example:

<pre class="smallexample">     <b>kadmin:</b> getprinc -terse jennifer/root
     <b>jennifer/root@ATHENA.MIT.EDU	0	1027458564
     0	36000	 (joeadmin/admin@ATHENA.MIT.EDU
     1027536385	18	2	0	[none]	604800	1027980137
     1027980054	3	2	1	2	16	0	1
     2	1	0
     kadmin:</b>
     </pre>

</body></html>