JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
Oracle Solaris Administration: Security Services     Oracle Solaris 11 Information Library
search filter icon
search icon

Document Information

Preface

Part I Security Overview

1.  Security Services (Overview)

Part II System, File, and Device Security

2.  Managing Machine Security (Overview)

3.  Controlling Access to Systems (Tasks)

4.  Virus Scanning Service (Tasks)

5.  Controlling Access to Devices (Tasks)

6.  Using the Basic Audit Reporting Tool (Tasks)

7.  Controlling Access to Files (Tasks)

Part III Roles, Rights Profiles, and Privileges

8.  Using Roles and Privileges (Overview)

9.  Using Role-Based Access Control (Tasks)

10.  Security Attributes in Oracle Solaris (Reference)

Part IV Cryptographic Services

11.  Cryptographic Framework (Overview)

12.  Cryptographic Framework (Tasks)

13.  Key Management Framework

Part V Authentication Services and Secure Communication

14.  Network Services Authentication (Tasks)

15.  Using PAM

16.  Using SASL

17.  Using Secure Shell (Tasks)

18.  Secure Shell (Reference)

Part VI Kerberos Service

19.  Introduction to the Kerberos Service

20.  Planning for the Kerberos Service

21.  Configuring the Kerberos Service (Tasks)

22.  Kerberos Error Messages and Troubleshooting

23.  Administering Kerberos Principals and Policies (Tasks)

24.  Using Kerberos Applications (Tasks)

25.  The Kerberos Service (Reference)

Kerberos Files

Kerberos Commands

Kerberos Daemons

Kerberos Terminology

Kerberos-Specific Terminology

Authentication-Specific Terminology

Types of Tickets

Ticket Lifetimes

Kerberos Principal Names

How the Kerberos Authentication System Works

How the Kerberos Service Interacts With DNS and the nsswitch Service

Gaining Access to a Service Using Kerberos

Obtaining a Credential for the Ticket-Granting Service

Obtaining a Credential for a Server

Obtaining Access to a Specific Service

Using Kerberos Encryption Types

Using the gsscred Table

Notable Differences Between Oracle Solaris Kerberos and MIT Kerberos

Part VII Auditing in Oracle Solaris

26.  Auditing (Overview)

27.  Planning for Auditing

28.  Managing Auditing (Tasks)

29.  Auditing (Reference)

Glossary

Index

Kerberos Commands

This section lists some commands that are included in the Kerberos product.

Table 25-2 Kerberos Commands

Command
Description
/usr/bin/ftp
File Transfer Protocol program
/usr/bin/kdestroy
Destroys Kerberos tickets
/usr/bin/kinit
Obtains and caches Kerberos ticket-granting tickets
/usr/bin/klist
Displays current Kerberos tickets
/usr/bin/kpasswd
Changes a Kerberos password
/usr/bin/ktutil
Manages Kerberos keytab files
/usr/bin/kvno
Lists key version numbers for Kerberos principals
/usr/bin/rcp
Remote file copy program
/usr/bin/rlogin
Remote login program
/usr/bin/rsh
Remote shell program
/usr/bin/telnet
Kerberized telnet program
/usr/lib/krb5/kprop
Kerberos database propagation program
/usr/sbin/gkadmin
Kerberos database administration GUI program, which is used to manage principals and policies
/usr/sbin/gsscred
Manage gsscred table entries
/usr/sbin/kadmin
Remote Kerberos database administration program (run with Kerberos authentication), which is used to manage principals, policies, and keytab files
/usr/sbin/kadmin.local
Local Kerberos database administration program (run without Kerberos authentication and must be run on master KDC), which is used to manage principals, policies, and keytab files
/usr/sbin/kclient
Kerberos client installation script which is used with or without a installation profile
/usr/sbin/kdb5_ldap_util
Creates LDAP containers for Kerberos databases
/usr/sbin/kdb5_util
Creates Kerberos databases and stash files
/usr/sbin/kgcmgr
Configures Kerberos master and slave KDCs
/usr/sbin/kproplog
Lists a summary of update entries in the update log