NIS+ Password, Credential, and Key Commands

The NIS+ service is managed by the Service Management Facility. Administrative actions on this service, such as enabling, disabling, or restarting, can be performed by using the svcadm command. See NIS+ and the Service Management Facility for more information about using the Facility with NIS+. For an overview of the Facility, refer to Chapter 18, Managing Services (Overview), in System Administration Guide: Basic Administration. Also refer to the svcadm(1M) and svcs(1) man pages for more details.

Use the following commands to administer passwords, credentials, and keys (see the appropriate man pages for a full description of each command):

• chkey. Changes a principal's Secure RPC key pair. Do not use chkey unless necessary, use passwd instead. See Changing Keys for an NIS+ Principal for more information.

• keylogin. Decrypts and stores a principal's secret key with the keyserv.

• keylogout. Deletes stored secret key from keyserv.

• keyserv. Enables the server for storing private encryption keys. See Keylogin With NIS+ for more information about keys. See NIS+ and the Service Management Facility for information about managing NIS+ by using the Service Management Facility.

• newkey. Creates a new key pair in public-key database.

• nisaddcred. Creates credentials for NIS+ principals. See Creating NIS+ Credential Information and Administering NIS+ Credential Information for more information.

• nisauthconf. Display or set the Diffie-Hellman key length.

• nisupdkeys. Updates public keys in directory objects. See Updating Public Keys for NIS+ for more information.

• passwd. Changes and administers principal's password. See Chapter 16, Administering NIS+ Passwords for more information.