Log in to the server as superuser.
Only the system administrator, logged in to the NIS+ server, can generate a new key for a user.
Create a new key for a user.
# newkey -u username |
username is the name of the user. The system prompts for a password. The system administrator can type a generic password. The private key is stored encrypted with the generic password.
# newkey -u george Adding new key for unix.12345@Abc.North.Acme.COM New Password: Retype password: Please wait for the database to get updated... Your new key has been successfully stored away. # |
Tell the user to log in and type the chkey -p command.
This allows the user to re-encrypt their private key with a password known only to the user.
earth% chkey -p Updating nis publickey database. Reencrypting key for unix.12345@Abc.North.Acme.COM Please enter the Secure-RPC password for george: Please enter the login password for george: Sending key change request to pluto... # |
The chkey command can be used to create a new key-pair for a user.