Mercurial > repos > rliterman > csp2
comparison CSP2/CSP2_env/env-d9b9114564458d9d-741b3de822f2aaca6c6caa4325c4afce/share/man/man1/kvno.1 @ 68:5028fdace37b
planemo upload commit 2e9511a184a1ca667c7be0c6321a36dc4e3d116d
| author | jpayne |
|---|---|
| date | Tue, 18 Mar 2025 16:23:26 -0400 |
| parents | |
| children |
comparison
equal
deleted
inserted
replaced
| 67:0e9998148a16 | 68:5028fdace37b |
|---|---|
| 1 .\" Man page generated from reStructuredText. | |
| 2 . | |
| 3 .TH "KVNO" "1" " " "1.20.1" "MIT Kerberos" | |
| 4 .SH NAME | |
| 5 kvno \- print key version numbers of Kerberos principals | |
| 6 . | |
| 7 .nr rst2man-indent-level 0 | |
| 8 . | |
| 9 .de1 rstReportMargin | |
| 10 \\$1 \\n[an-margin] | |
| 11 level \\n[rst2man-indent-level] | |
| 12 level margin: \\n[rst2man-indent\\n[rst2man-indent-level]] | |
| 13 - | |
| 14 \\n[rst2man-indent0] | |
| 15 \\n[rst2man-indent1] | |
| 16 \\n[rst2man-indent2] | |
| 17 .. | |
| 18 .de1 INDENT | |
| 19 .\" .rstReportMargin pre: | |
| 20 . RS \\$1 | |
| 21 . nr rst2man-indent\\n[rst2man-indent-level] \\n[an-margin] | |
| 22 . nr rst2man-indent-level +1 | |
| 23 .\" .rstReportMargin post: | |
| 24 .. | |
| 25 .de UNINDENT | |
| 26 . RE | |
| 27 .\" indent \\n[an-margin] | |
| 28 .\" old: \\n[rst2man-indent\\n[rst2man-indent-level]] | |
| 29 .nr rst2man-indent-level -1 | |
| 30 .\" new: \\n[rst2man-indent\\n[rst2man-indent-level]] | |
| 31 .in \\n[rst2man-indent\\n[rst2man-indent-level]]u | |
| 32 .. | |
| 33 .SH SYNOPSIS | |
| 34 .sp | |
| 35 \fBkvno\fP | |
| 36 [\fB\-c\fP \fIccache\fP] | |
| 37 [\fB\-e\fP \fIetype\fP] | |
| 38 [\fB\-k\fP \fIkeytab\fP] | |
| 39 [\fB\-q\fP] | |
| 40 [\fB\-u\fP | \fB\-S\fP \fIsname\fP] | |
| 41 [\fB\-P\fP] | |
| 42 [\fB\-\-cached\-only\fP] | |
| 43 [\fB\-\-no\-store\fP] | |
| 44 [\fB\-\-out\-cache\fP \fIcache\fP] | |
| 45 [[{\fB\-F\fP \fIcert_file\fP | {\fB\-I\fP | \fB\-U\fP} \fIfor_user\fP} [\fB\-P\fP]] | \fB\-\-u2u\fP \fIccache\fP] | |
| 46 \fIservice1 service2\fP ... | |
| 47 .SH DESCRIPTION | |
| 48 .sp | |
| 49 kvno acquires a service ticket for the specified Kerberos principals | |
| 50 and prints out the key version numbers of each. | |
| 51 .SH OPTIONS | |
| 52 .INDENT 0.0 | |
| 53 .TP | |
| 54 \fB\-c\fP \fIccache\fP | |
| 55 Specifies the name of a credentials cache to use (if not the | |
| 56 default) | |
| 57 .TP | |
| 58 \fB\-e\fP \fIetype\fP | |
| 59 Specifies the enctype which will be requested for the session key | |
| 60 of all the services named on the command line. This is useful in | |
| 61 certain backward compatibility situations. | |
| 62 .TP | |
| 63 \fB\-k\fP \fIkeytab\fP | |
| 64 Decrypt the acquired tickets using \fIkeytab\fP to confirm their | |
| 65 validity. | |
| 66 .TP | |
| 67 \fB\-q\fP | |
| 68 Suppress printing output when successful. If a service ticket | |
| 69 cannot be obtained, an error message will still be printed and | |
| 70 kvno will exit with nonzero status. | |
| 71 .TP | |
| 72 \fB\-u\fP | |
| 73 Use the unknown name type in requested service principal names. | |
| 74 This option Cannot be used with \fI\-S\fP\&. | |
| 75 .TP | |
| 76 \fB\-P\fP | |
| 77 Specifies that the \fIservice1 service2\fP ... arguments are to be | |
| 78 treated as services for which credentials should be acquired using | |
| 79 constrained delegation. This option is only valid when used in | |
| 80 conjunction with protocol transition. | |
| 81 .TP | |
| 82 \fB\-S\fP \fIsname\fP | |
| 83 Specifies that the \fIservice1 service2\fP ... arguments are | |
| 84 interpreted as hostnames, and the service principals are to be | |
| 85 constructed from those hostnames and the service name \fIsname\fP\&. | |
| 86 The service hostnames will be canonicalized according to the usual | |
| 87 rules for constructing service principals. | |
| 88 .TP | |
| 89 \fB\-I\fP \fIfor_user\fP | |
| 90 Specifies that protocol transition (S4U2Self) is to be used to | |
| 91 acquire a ticket on behalf of \fIfor_user\fP\&. If constrained | |
| 92 delegation is not requested, the service name must match the | |
| 93 credentials cache client principal. | |
| 94 .TP | |
| 95 \fB\-U\fP \fIfor_user\fP | |
| 96 Same as \-I, but treats \fIfor_user\fP as an enterprise name. | |
| 97 .TP | |
| 98 \fB\-F\fP \fIcert_file\fP | |
| 99 Specifies that protocol transition is to be used, identifying the | |
| 100 client principal with the X.509 certificate in \fIcert_file\fP\&. The | |
| 101 certificate file must be in PEM format. | |
| 102 .TP | |
| 103 \fB\-\-cached\-only\fP | |
| 104 Only retrieve credentials already present in the cache, not from | |
| 105 the KDC. (Added in release 1.19.) | |
| 106 .TP | |
| 107 \fB\-\-no\-store\fP | |
| 108 Do not store retrieved credentials in the cache. If | |
| 109 \fB\-\-out\-cache\fP is also specified, credentials will still be | |
| 110 stored into the output credential cache. (Added in release 1.19.) | |
| 111 .TP | |
| 112 \fB\-\-out\-cache\fP \fIccache\fP | |
| 113 Initialize \fIccache\fP and store all retrieved credentials into it. | |
| 114 Do not store acquired credentials in the input cache. (Added in | |
| 115 release 1.19.) | |
| 116 .TP | |
| 117 \fB\-\-u2u\fP \fIccache\fP | |
| 118 Requests a user\-to\-user ticket. \fIccache\fP must contain a local | |
| 119 krbtgt ticket for the server principal. The reported version | |
| 120 number will typically be 0, as the resulting ticket is not | |
| 121 encrypted in the server\(aqs long\-term key. | |
| 122 .UNINDENT | |
| 123 .SH ENVIRONMENT | |
| 124 .sp | |
| 125 See kerberos(7) for a description of Kerberos environment | |
| 126 variables. | |
| 127 .SH FILES | |
| 128 .INDENT 0.0 | |
| 129 .TP | |
| 130 .B \fBFILE:/tmp/krb5cc_%{uid}\fP | |
| 131 Default location of the credentials cache | |
| 132 .UNINDENT | |
| 133 .SH SEE ALSO | |
| 134 .sp | |
| 135 kinit(1), kdestroy(1), kerberos(7) | |
| 136 .SH AUTHOR | |
| 137 MIT | |
| 138 .SH COPYRIGHT | |
| 139 1985-2022, MIT | |
| 140 .\" Generated by docutils manpage writer. | |
| 141 . |