newkey man page on SmartOS

Man page or keyword search:  
man Server   16655 pages
apropos Keyword Search (all sections)
Output format
SmartOS logo
[printable version]

NEWKEY(1M)							    NEWKEY(1M)

NAME
       newkey - create a new Diffie-Hellman key pair in the publickey database

SYNOPSIS
       newkey -h hostname [-s nisplus | nis | files | ldap]

       newkey -u username [-s nisplus | nis | files | ldap]

DESCRIPTION
       newkey  establishes  new public keys for users and machines on the net‐
       work.  These keys are needed when using secure RPC or secure  NFS  ser‐
       vice.

       newkey  prompts	for  a password for the given username or hostname and
       then creates a new public/secret Diffie-Hellman 192 bit	key  pair  for
       the  user or host. The secret key is encrypted with the given password.
       The key pair can be stored in the /etc/publickey	 file,	the  NIS  pub‐
       lickey map, or the NIS+ cred.org_dir table.

       newkey consults the publickey entry in the name service switch configu‐
       ration file (see nsswitch.conf(4)) to determine which naming service is
       used  to	 store the secure RPC keys. If the publickey entry specifies a
       unique name service, newkey will add the key in the specified name ser‐
       vice.  However, if there are multiple name services listed, newkey can‐
       not decide which source to update and will display  an  error  message.
       The  user  is  required	to  specify  the source explicitly with the -s
       option.

       In the case of NIS, newkey should be run by the superuser on the master
       NIS  server  for that domain. In the case of NIS+, newkey should be run
       by the superuser on a  machine  which  has  permission  to  update  the
       cred.org_dir table of the new user/host domain.

       In  the	case  of  NIS+, nisaddcred(1M) should be used to add new keys.
       newkey cannot be used to create keys other than 192-bit Diffie-Hellman.

       In the case of LDAP, newkey should be run by the superuser on a machine
       that  also  recognizes  the directory manager's bind distinguished name
       (DN) and password to perform an LDAP update for the host.

OPTIONS
       -h hostname
		      Create a new public/secret key pair for  the  privileged
		      user  at	the given hostname. Prompts for a password for
		      the given hostname.

       -u username
		      Create a new public/secret key pair for the given	 user‐
		      name. Prompts for a password for the given username.

       -s nisplus
       -s nis
       -s files
       -s ldap
		      Update  the  database  in	 the specified source: nisplus
		      (for NIS+), nis (for NIS), files, or ldap (LDAP).	 Other
		      sources may be available in the future.

SEE ALSO
       chkey(1), keylogin(1), nisaddcred(1M), nisclient(1M), nsswitch.conf(4),
       publickey(4), attributes(5)

NOTES
       NIS+ might not be supported in future releases of the Solaris operating
       system.	 Tools to aid the migration from NIS+ to LDAP are available in
       the   current   Solaris	 release.   For	  more	 information,	 visit
       http://www.sun.com/directory/nisplus/transition.html.

				 Nov 13, 2003			    NEWKEY(1M)
[top]

List of man pages available for SmartOS

Copyright (c) for man pages and the logo by the respective OS vendor.

For those who want to learn more, the polarhome community provides shell access and support.

[legal] [privacy] [GNU] [policy] [cookies] [netiquette] [sponsors] [FAQ]
Tweet
Polarhome, production since 1999.
Member of Polarhome portal.
Based on Fawad Halim's script.
....................................................................
Vote for polarhome
Free Shell Accounts :: the biggest list on the net