NAME | SYNOPSIS | DESCRIPTION | ATTRIBUTES | OPTIONS | SEE ALSO | NOTES
tokmapctl provides an interface to send control and configuration requests to a tokmapd process.
tokmapctl must be started from the trusted path and must inherit the net_privaddr
and net_mac_read
privileges. tokmapctl should be run at sensitivity label ADMIN_HIGH
.
See attributes(5) for descriptions of the following attributes:
ATTRIBUTE TYPE | ATTRIBUTE VALUE |
---|---|
Availability | SUNWtsu |
Send the control and configuration requests to the tokmapd process on host hostname. If this option is not specified, the request is sent to the tokmapd process on the local host.
Send the requests to tokmapd on port number port. This option is intended for debugging only. If this option is not specified, requests are sent to port 90.
Tell tokmapd to use timeout seconds as its timeout period before retrying a request that has been sent to another token-mapping server but has received no reply. The default is 5 seconds.
Tell tokmapd to use retries as the maximum number of times to retry requests to other token-mapping servers. The default is 5 retries.
Tell tokmapd to use retry_interval milliseconds as its interval between checks for the need to retry requests to other token-mapping servers. The default interval is 100 milliseconds.
Tell tokmapd to reinitialize its token store. If it is specified, cachesize is used to set the size of the token store in-memory cache. cachesize specifies how many entries of each attribute type to keep in the cache. The default is 10.
Tell tokmapd to flush all tokens for hostname from its token store. If hostname is omitted, tokmapd flushes all tokens for remote hosts.
Fetch and display metering data from tokmapd. The allowable values for meter_type are hostlist, general, store, and all. Multiple -m options may be specified to request multiple types of metering data; specify type all to fetch and display all the meter types.
Set tokmapd debugging level to level. Debugging level 1 produces minimal output showing when messages are sent and received. Level 3 shows the contents of the headers of messages. Level 5 shows detailed information including buffer addresses and contents. Levels above 5 show additional internal information.
Set tokmapctl debugging level to level. Debugging level 1 produces minimal output showing when messages are sent and received. Level 3 shows the contents of the headers of messages. Level 5 shows detailed information including buffer addresses and contents. Levels above 5 show additional internal information.
Tell tokmapd to write its debugging output to logfile.
Fetch and display metering data from tokmapd for its token-mapping exchanges with host hostname.
Send a request for an orderly shutdown and exit to tokmapd.
If the token store becomes too large, use the -I option of tokmapctl to make tokmapd delete the current token store and reinitialize.
These interfaces are uncommitted. Although they are not expected to change between minor releases of the Trusted Solaris environment, they may.
NAME | SYNOPSIS | DESCRIPTION | ATTRIBUTES | OPTIONS | SEE ALSO | NOTES