k
kinit(1) | kinit(1) |
NAME
kinit - obtain and cache the Kerberos
SYNOPSIS
kinit
DESCRIPTION
kinit obtains and caches an initial
Options | Requests a ticket with the lifetime value de®ned in life_time. The value for life_time | |
| must be followed immediately by one of the following delimiters: | |
| s | seconds |
| m | minutes |
| h | hours |
| d | days |
| For example, as in kinit | |
| 3h30m will result in an error. | |
| If the | |
| used. Specifying a ticket lifetime longer than the maximum ticket lifetime (con®gured | |
| by each site) results in a ticket with the maximum lifetime. | |
Requests a postdated ticket, valid starting at start_time. The format for start_time is | ||
| the same as the | |
| Postdated tickets are issued with the invalid ¯ag set, and need to be fed back to the | |
| Kerberos KDC (Key Distribution Center) before use. | |
Requests that the ticket granting ticket in the cache (with the invalid ¯ag set) be | ||
| passed to the KDC for validation. If the ticket is within its requested time range, the | |
| cache is replaced with the validated ticket. | |
Requests proxiable tickets. | ||
Requests forwardable tickets. | ||
| hours, or days. |
Requests renewal of the | |
| renewed, even if the ticket is still within its renewable life. |
Requests a host ticket, obtained from a key in the local host's keytab ®le. The name and location of the keytab ®le may be speci®ed with the
The default credentials cache may vary between systems. If the KRB5CCNAME environment variable is set, its value is used to name the default ticket cache. Any existing contents of the cache are destroyed by kinit.
principal | Uses the principal name from an existing cache if there is one. |
Note
For DCE operations use /opt/dce/bin/kinit.
Environment
kinit uses the following environment variable:
KRB5CCNAME Location of the credentials ticket cache.
Section 1−392 | − 1 − |