kas_list - Displays all entries in the Authentication Database
SYNOPSIS
kas list [-long] [-showadmin] [-showkey]
[-admin_username <admin principal to use for authentication>]
[-password_for_admin <admin password>] [-cell <cell name>]
[-servers <explicit list of authentication servers>+]
[-noauth] [-help]
kas ls [-l] [-showa] [-showk]
[-a <admin principal to use for authentication>]
[-p <admin password>] [-c <cell name>]
[-se <explicit list of authentication servers>+] [-n] [-h]
DESCRIPTION
The kas list command either displays all entries from the
Authentication Database by name, or displays the full database entry for a
defined set of entries, as determined by the flag provided:
•
To display every entry in the Authentication Database in full, include the
-long flag.
•
To display only those entries in full that have the "ADMIN" flag set,
include the -showadmin flag.
•
To list only the name of each Authentication Database entry, omit both the
-long and -showadmin flags.
By default, full entries include a checksum for the encryption key, rather
than the actual octal digits that constitute the key. To display the octal
digits, include the -showkey flag with the -long or -showadmin
flag.
OPTIONS
-long
Displays every Authentication Database entry in full. Provide this flag or
the -showadmin flag, or omit both to display just the name of every
database entry.
-showadmin
Displays in full only the Authentication Database entries that have the
"ADMIN" flag set. Provide this flag or the -long flag, or omit both to
display just the name of every database entry.
-showkey
Displays the octal digits that constitute the key in each full
entry. Provide either the -long or -showadmin flag along with this
one.
-admin_username <admin principal>
Specifies the user identity under which to authenticate with the
Authentication Server for execution of the command. For more details, see
kas(8).
-password_for_admin <admin password>
Specifies the password of the command's issuer. If it is omitted (as
recommended), the kas command interpreter prompts for it and does not
echo it visibly. For more details, see kas(8).
-cell <cell name>
Names the cell in which to run the command. For more details, see
kas(8).
-servers <authentication servers>+
Names each machine running an Authentication Server with which to
establish a connection. For more details, see kas(8).
-noauth
Assigns the unprivileged identity "anonymous" to the issuer. For more
details, see kas(8).
-help
Prints the online help for this command. All other valid options are
ignored.
OUTPUT
If neither the -long or -showadmin flag is provided, the output
lists the name of each entry in the Authentication Database on its own
line.
If the -long flag is included, the output includes every Authentication
Database entry in full. If the -showadmin flag is included, the output
includes in full only the Authentication Database entries that have the
"ADMIN" flag set. If the -showkey is provided along with either one,
the output includes the octal digits that constitute the encryption key in
each entry.
A full Authentication Database entry includes the same information
displayed by the kas examine command; for details, see that command's
reference page.
PRIVILEGE REQUIRED
The issuer must have the "ADMIN" flag set on his or her Authentication
Database entry.
This documentation is covered by the IBM Public License Version 1.0. It was
converted from HTML to POD by software written by Chas Williams and Russ
Allbery, based on work by Alf Wachsmann and Elizabeth Cassell.