Go to main content

man pages section 8: System Administration Commands

Exit Print View

Updated: Thursday, June 13, 2019
 
 

gssd(8)

Name

gssd - generates and validates GSS-API tokens for kernel RPC

Synopsis

/usr/lib/gss/gssd

Description

gssd is the user mode daemon that operates between the kernel rpc and the Generic Security Service Application Program Interface (GSS-API) to generate and validate GSS-API security tokens. In addition, gssd maps the GSS-API principal names to the local user and group ids. By default, all groups that the requested user belongs to will be included in the grouplist credential. gssd is invoked by the Internet daemon inetd(8) the first time that the kernel RPC requests GSS-API services.

Exit Status

The following exit values are returned:

0

Successful completion.

>0

An error occurred.

Attributes

See attributes(7) for descriptions of the following attributes:

ATTRIBUTE TYPE
ATTRIBUTE VALUE
Availability
system/library/security/gss
Interface Stability
Committed

See Also

kill(1), pkill(1), svcs(1), gsscred.conf(5), resolv.conf(5), attributes(7), smf(7), gsscred(8), inetadm(8), inetd(8), svcadm(8)

RFC 2078

Notes

The following signal has the specified effect when sent to the server process using the kill(1) command:

SIGHUP

gssd rereads the gsscred.conf(5) options.

When one of the mechanisms being used is Kerberos, then the gssd process must be restarted after adding or changing the resolv.conf(5) file.

The gssd service is managed by the service management facility, smf(7), under the service identifier:


svc:/network/rpc/gss:default

Administrative actions on this service, such as enabling, disabling, or requesting restart, can be performed using svcadm(8). Responsibility for initiating and restarting this service is delegated to inetd(8). Use inetadm(8) to make configuration changes and to view configuration information for this service. The service's status can be queried using the svcs(1) command.