IBM NFS/DFS Secure Gateway manual Dfsgw Purpose, Options, Dfsgw add, Dfsgw delete

dfsgw

Purpose

Introduction to the dfsgw command suite used with the NFS/DFS Secure Gateway

Options

The following options are used with many dfsgw commands. They are also described with the commands that use them.

-idnetworkID:userID

Identifies an NFS client and the user whose DCE authentication from that client is to be manipulated. Specify either the network address or the hostname of the NFS client. Specify the user’s UNIX user identification number (UID) rather than a username.

-dceidlogin_name[:password]

Specifies the DCE principal name and password of the user for whom to create an entry in the authentication table.

-afaddress_family

Specifies the style of network address to use to identify hosts. By default, the command uses the only address family currently supported, inet (Internet).

-helpDisplays the online help for the command. All other valid options specified with this option are ignored.

Description

The dfsgw command suite provides commands to manipulate entries in the local authentication table on a Gateway Server machine. The table contains an entry for each user who has DCE credentials on the Gateway Server machine. Each entry maps the user’s UID and the network address of the NFS client for which the user has DCE credentials to the user’s Process Activation Group (PAG).

The dfsgw command suite includes the following commands:

dfsgw add

Obtains DCE credentials to provide a user with authenticated access to DFS from a specified NFS client. The command adds an entry to the authentication table.

dfsgw delete

Cancels a user’s authenticated access to DFS from a specified NFS client by removing the user’s entry from the authentication table.

Chapter 5. Configuration File and Command Reference 27