Introduction to the Kerberos Products and GSS-API

 

 

 

KRB5 Client Software

 

 

NOTE

For DCE operations use /opt/dce/bin/kinit.

 

 

Reference

To view the kinit manpage, issue the following command:

 

$ man 1 kinit

 

 

 

The klist Utility

 

Description

The klist utility lists the Kerberos principal and Kerberos tickets held

 

in a credentials cache, or the keys held in a keytab file.

Synopsis

/usr/bin/klist

[-e]

 

/usr/bin/klist

[-c] [cache_name]

 

/usr/bin/klist

[-f] [cache_name]

 

/usr/bin/klist

[-s] [cache_name]

 

/usr/bin/klist

[-k] [keytab_name]

 

/usr/bin/klist

[-t] [keytab_name]

 

/usr/bin/klist

[-K] [keytab_name]

Options

-e

The -eoption displays the encryption types of the

 

 

session key and the ticket for each credential in the

 

 

credential cache, or each key in the keytab file.

 

-c

The -coption lists tickets held in a credentials cache.

 

 

This is the default if neither -cnor -kis specified.

 

-f

The -foption shows the flags present in the

 

 

credentials, using the following abbreviations:

 

 

F - forwardable

 

 

f - forwarded

 

 

P - Proxiable

 

 

p - proxy

 

 

D - postDateable

 

 

d - postdated

 

 

R- Renewable

Chapter 2

59