jimzah/openafs
1
0
Fork 0
mirror of https://git.openafs.org/openafs.git synced 2025-01-22 17:00:15 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
59741a821c
openafs/doc/html/AdminReference/auarf023.htm
Derrick Brashear d7da1acc31 initial-html-documentation-20010606 
pull in all documentation from IBM
2001-06-06 19:09:07 +00:00

74 lines
4.4 KiB
HTML
Raw Blame History

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 4//EN">
<HTML><HEAD>
<TITLE>Administration Reference</TITLE>
<!-- Begin Header Records ========================================== -->
<!-- /tmp/idwt3672/auarf000.scr converted by idb2h R4.2 (359) ID -->
<!-- Workbench Version (AIX) on 3 Oct 2000 at 16:18:30 -->
<META HTTP-EQUIV="updated" CONTENT="Tue, 03 Oct 2000 16:18:29">
<META HTTP-EQUIV="review" CONTENT="Wed, 03 Oct 2001 16:18:29">
<META HTTP-EQUIV="expires" CONTENT="Thu, 03 Oct 2002 16:18:29">
</HEAD><BODY>
<!-- (C) IBM Corporation 2000. All Rights Reserved -->
<BODY bgcolor="ffffff">
<!-- End Header Records ============================================ -->
<A NAME="Top_Of_Page"></A>
<H1>Administration Reference</H1>
<HR><P ALIGN="center"> <A HREF="../index.htm"><IMG SRC="../books.gif" BORDER="0" ALT="[Return to Library]"></A> <A HREF="auarf002.htm#ToC"><IMG SRC="../toc.gif" BORDER="0" ALT="[Contents]"></A> <A HREF="auarf022.htm"><IMG SRC="../prev.gif" BORDER="0" ALT="[Previous Topic]"></A> <A HREF="#Bot_Of_Page"><IMG SRC="../bot.gif" BORDER="0" ALT="[Bottom of Topic]"></A> <A HREF="auarf024.htm"><IMG SRC="../next.gif" BORDER="0" ALT="[Next Topic]"></A> <A HREF="auarf284.htm#HDRINDEX"><IMG SRC="../index.gif" BORDER="0" ALT="[Index]"></A> <P>
<P>
<H2><A NAME="HDRKEYFILE" HREF="auarf002.htm#ToC_21">KeyFile</A></H2>
<P><STRONG>Purpose</STRONG>
<A NAME="IDX3934"></A>
<A NAME="IDX3935"></A>
<A NAME="IDX3936"></A>
<A NAME="IDX3937"></A>
<A NAME="IDX3938"></A>
<A NAME="IDX3939"></A>
<A NAME="IDX3940"></A>
<A NAME="IDX3941"></A>
<P>Defines AFS server encryption keys
<P><STRONG>Description</STRONG>
<P>The <B>KeyFile</B> file defines the server encryption keys that the AFS
server processes running on the machine use to decrypt the tickets presented
by clients during the mutual authentication process. AFS server
processes perform privileged actions only for clients that possess a ticket
encrypted with one of the keys from the file. The file must reside in
the <B>/usr/afs/etc</B> directory on every server machine. For more
detailed information on mutual authentication and server encryption keys, see
the <I>IBM AFS Administration Guide</I>.
<P>Each key has a corresponding a key version number that distinguishes it
from the other keys. The tickets that clients present are also marked
with a key version number to tell the server process which key to use to
decrypt it. The <B>KeyFile</B> file must always include a key with
the same key version number and contents as the key currently listed for the
<B>afs</B> entry in the Authentication Database.
<P>The <B>KeyFile</B> file is in binary format, so always use the
appropriate commands from the <B>bos</B> command suite to administer
it:
<UL>
<P><LI>The <B>bos addkey</B> command to define a new key
<P><LI>The <B>bos listkeys</B> command to display the keys
<P><LI>The <B>bos removekey</B> command to remove a key from the file
</UL>
<P>In cells that run the United States edition of AFS and use the Update
Server to distribute the contents of the <B>/usr/afs/etc</B> directory, it
is customary to edit only the copy of the file stored on the system control
machine. In cells that run the international version of AFS, edit the
file on each server machine individually.
<P><STRONG>Related Information</STRONG>
<P><A HREF="auarf095.htm#HDRBOS_ADDKEY">bos addkey</A>
<P><A HREF="auarf107.htm#HDRBOS_LISTKEYS">bos listkeys</A>
<P><A HREF="auarf111.htm#HDRBOS_REMOVEKEY">bos removekey</A>
<P><A HREF="auarf194.htm#HDRKAS_SETPASSWORD">kas setpassword</A>
<P><A HREF="auarf240.htm#HDRUPCLIENT">upclient</A>
<P><A HREF="auarf241.htm#HDRUPSERVER">upserver</A>
<P><I>IBM AFS Administration Guide</I>
<P>
<HR><P ALIGN="center"> <A HREF="../index.htm"><IMG SRC="../books.gif" BORDER="0" ALT="[Return to Library]"></A> <A HREF="auarf002.htm#ToC"><IMG SRC="../toc.gif" BORDER="0" ALT="[Contents]"></A> <A HREF="auarf022.htm"><IMG SRC="../prev.gif" BORDER="0" ALT="[Previous Topic]"></A> <A HREF="#Top_Of_Page"><IMG SRC="../top.gif" BORDER="0" ALT="[Top of Topic]"></A> <A HREF="auarf024.htm"><IMG SRC="../next.gif" BORDER="0" ALT="[Next Topic]"></A> <A HREF="auarf284.htm#HDRINDEX"><IMG SRC="../index.gif" BORDER="0" ALT="[Index]"></A> <P>
<!-- Begin Footer Records ========================================== -->
<P><HR><B>
<br>&#169; <A HREF="http://www.ibm.com/">IBM Corporation 2000.</A> All Rights Reserved
</B>
<!-- End Footer Records ============================================ -->
<A NAME="Bot_Of_Page"></A>
</BODY></HTML>
Reference in New Issue View Git Blame Copy Permalink