KASERVERAUXDB(5) AFS File Reference KASERVERAUXDB(5)NAMEkaserverauxdb - Records failed authentication attempts
DESCRIPTION
The file kaserverauxdb records failed authentication attempts for the
local Authentication Server. The server creates it automatically in the
/usr/afs/local directory by default; use the -localfiles argument to
the kaserver command to specify an alternate directory.
The kaserverauxdb file is an internal database used by the
Authentication Server to prevent access by users who have exceeded the
limit on failed authentication attempts defined in their Authentication
Database entry. The Authentication Server refuses further attempts to
authenticate to an account listed in the database until either an AFS
system administrator issues the kas unlock command to unlock the
account, or the timeout period defined in the user's Authentication
Database entry passes.
The kaserverauxdb file is in binary format, so its contents are not
directly accessible. However, the output from the kas examine command
reports an account's maximum number of failed attempts, the lockout
time, and whether the account is currently locked.
CAUTIONS
The Authentication Server is obsolete and is provided only for sites
that need to use it while preparing for a migration to Kerberos KDC. It
will be removed in a future version of OpenAFS.
SEE ALSOkaserver.DB0(5), kas_examine(8), kas_unlock(8), kaserver(8)COPYRIGHT
IBM Corporation 2000. <http://www.ibm.com/> All Rights Reserved.
This documentation is covered by the IBM Public License Version 1.0.
It was converted from HTML to POD by software written by Chas Williams
and Russ Allbery, based on work by Alf Wachsmann and Elizabeth Cassell.
OpenAFS 2013-10-09 KASERVERAUXDB(5)