1 kas getpassword AFS Commands kas getpassword
6 kas getpassword -- display octal key from an Authentication
11 kas getpassword -name <name of user> [-help]
13 ACCEPTABLE ABBREVIATIONS/ALIASES
15 kas getp -n <name of user> [-h]
19 Prints out the contents (an octal-format encryption key) of
20 the key field for the Database entry name of user.
24 This command works only if the Authentication Server has
25 been compiled with a special flag; this is normally done
26 only for cells in the process of converting from use of AFS
27 2.0-style authentication to AFS 3.0 authentication.
28 Moreover, this command does not work if issued on an AFS
29 client. The issuer must be logged into a machine running
30 the specially-compiled Authentication Server (a database
31 server machine or other machine running an isolated
32 Authentication Server).
34 The recommended way to examine the octal form of keys is
35 with kas examine when authorization checking is disabled.
36 That command shows a "checksum" when authorization checking
37 is enabled, which may be suitable for some purposes.
39 Even when the other conditions are met, this command does
40 not work for entries where the name includes a period (these
41 entries are generally for the Authentication Server's
46 -name names the entry from which the key field should be
49 -help prints the online help for this command. Do not
50 provide any other arguments or flags with this one.
51 See section 4.3 in the Reference Manual for more
56 The output simply prints the key after a "Key:" header. It
57 does not report the key version number, but that is
58 available from kas examine.
62 The following shows a user using this command to examine
68 Key: \020\354\315\310\313\023W\370
72 None. There is no prompt for a password, and the issuer
73 does not have to have the ADMIN flag set in his or her
74 Database entry. It is assumed that any machine running the
75 Authentication Server is secured by having only a limited
76 number of people in its local /etc/passwd file.