![[Return to Library]](../books.gif)
![[Contents]](../toc.gif)
![[Previous Topic]](../prev.gif)
![[Bottom of Topic]](../bot.gif)
![[Next Topic]](../next.gif)
![[Index]](../index.gif)
Records failed authentication attempts
Description
The file kaserverauxdb records failed authentication attempts for the local Authentication Server. The server creates it automatically in the /usr/afs/local directory by default; use the -localfiles argument to the kaserver command to specify an alternate directory.
The kaserverauxdb file is an internal database used by the Authentication Server to prevent access by users who have exceeded the limit on failed authentication attempts defined in their Authentication Database entry. The Authentication Server refuses further attempts to authenticate to an account listed in the database until either an AFS system administrator issues the kas unlock command to unlock the account, or the timeout period defined in the user's Authentication Database entry passes.
The kaserverauxdb file is in binary format, so its contents are not directly accessible. However, the output from the kas examine command reports an account's maximum number of failed attempts, the lockout time, and whether the account is currently locked.
Related Information
kaserver.DB0 and kaserver.DBSYS1
![[Top of Topic]](../top.gif)