1 | .\" $Id: fsid.1,v 1.3 1992-07-31 19:20:47 probe Exp $ |
---|
2 | .\" |
---|
3 | .TH FSID 1 "1 July 1991" |
---|
4 | .ds ]W MIT Project Athena |
---|
5 | .SH NAME |
---|
6 | fsid, nfsid \- Perform authorization functions to remote file servers |
---|
7 | .SH SYNOPSIS |
---|
8 | .nf |
---|
9 | fsid [ options ] [[-f] filesystem ...] [-h host] [-c cell] ... |
---|
10 | nfsid [ options ] [-f filesystem] [[-h] host ...] [-c cell] ... |
---|
11 | .fi |
---|
12 | .SH DESCRIPTION |
---|
13 | |
---|
14 | \fIFsid\fP is a system program which presents your credentials to an |
---|
15 | NFS server by the use of Kerberos authentication, allowing your |
---|
16 | workstation to access files on the server. Within Athena, the default |
---|
17 | permissions for a client workstation attempting to access an NFS |
---|
18 | filesystem are those of the user "nobody", meaning that a program |
---|
19 | running on the workstation ordinarily would not be allowed to modify |
---|
20 | any files on the NFS server. \fIFsid\fP sends a Kerberos |
---|
21 | authentication ticket over to the server which records an association |
---|
22 | between a workstation's IP address and the user's userid. |
---|
23 | |
---|
24 | .PP |
---|
25 | The following arguments to \fIfsid\fP modify its default behavior. |
---|
26 | All arguments are processed \fIin order\fP. Thus, if a -u option is |
---|
27 | followed by a -m option, the -m option will take precedence. |
---|
28 | |
---|
29 | .IP "-verbose or -v" |
---|
30 | Display verbose information about the mapping operation. This is the |
---|
31 | default. |
---|
32 | .IP "-quiet or -q" |
---|
33 | Don't display verbose information. |
---|
34 | .IP "-debug or -d" |
---|
35 | Print debugging information. This will not normally be useful to users. |
---|
36 | .IP "-map or -m" |
---|
37 | Set the mapping function to "map user". This is the default, and is |
---|
38 | used to establish a mapping to a server. It requires that the user be |
---|
39 | authenticated. |
---|
40 | .IP "-unmap or -u" |
---|
41 | Set the mapping function to "unmap user". This is used to remove a |
---|
42 | mapping from a server. |
---|
43 | .IP "-purge or -p" |
---|
44 | Set the mapping function to "purge host". This is used to remove all |
---|
45 | mappings associated with the user's host. |
---|
46 | .IP "-purgeuser or -r" |
---|
47 | Set the mapping function to "purge user". This is used to remove all |
---|
48 | mappings associated with the user on the host. It requires that the |
---|
49 | user be authenticated. |
---|
50 | .IP "-filsys or -f" |
---|
51 | Perform the current mapping operation for the servers associated with |
---|
52 | the indicated filesystems. The filesystems are retrieved from |
---|
53 | /usr/tmp/attachtab. |
---|
54 | .IP "-cell \fIcell\fP or -c \fIcell\fP" |
---|
55 | Authenticate the user to the specified AFS cell. |
---|
56 | .IP "-host \fIhost\fP or -h \fIhost\fP" |
---|
57 | Authenticate the user to the specified NFS server host. |
---|
58 | .IP "-all or -a" |
---|
59 | Perform the current mapping operation for all hosts associated with |
---|
60 | filesystems in /usr/tmp/attachtab (see \fIattach(1)\fP). Note that a host |
---|
61 | may be referenced more than once if more than once filesystem is |
---|
62 | located on that host. |
---|
63 | .IP "-user \fIuser\fP or -U \fIuser\fP" |
---|
64 | Perform the mapping on behalf of the specified user. |
---|
65 | |
---|
66 | .PP |
---|
67 | If the -f option is not specified, \fIfsid\fP takes a list of hosts |
---|
68 | (either names or internet addresses) as arguments and performs the |
---|
69 | specified mapping function. If -f is specified, it takes a list of |
---|
70 | filesystem names instead and uses /usr/tmp/attachtab to retrieve the |
---|
71 | server associated with each filesystem. |
---|
72 | |
---|
73 | .SH EXAMPLES |
---|
74 | |
---|
75 | .nf |
---|
76 | fsid -m CHARON.MIT.EDU -u -f x11 |
---|
77 | .fi |
---|
78 | |
---|
79 | Establish a mapping for the user on the host CHARON.MIT.EDU and |
---|
80 | delete a mapping for the user on the host the holds the x11 filesystem. |
---|
81 | |
---|
82 | .nf |
---|
83 | fsid -q -p -a |
---|
84 | .fi |
---|
85 | |
---|
86 | Purge the host's mappings on all servers that have filesystems mounted |
---|
87 | on the host, but don't display a message after each host is purged. |
---|
88 | |
---|
89 | .SH DIAGNOSTICS |
---|
90 | |
---|
91 | If \fIfsid\fP is executed with only a single filesystem or host |
---|
92 | argument, the exit status will be one of the following: |
---|
93 | .TP 5 |
---|
94 | 0 |
---|
95 | No error encountered. |
---|
96 | .TP 5 |
---|
97 | 1 |
---|
98 | Bad arguments. |
---|
99 | .TP 5 |
---|
100 | 3 |
---|
101 | Internal fatal error. |
---|
102 | .TP 5 |
---|
103 | 10 |
---|
104 | Keberos failure. |
---|
105 | .TP 5 |
---|
106 | 11 |
---|
107 | Host communication failure. |
---|
108 | .TP 5 |
---|
109 | 12 |
---|
110 | Authentication failure. |
---|
111 | .TP 5 |
---|
112 | 13 |
---|
113 | No reserved ports available. |
---|
114 | .TP 5 |
---|
115 | 20 |
---|
116 | A filesystem specified with -f was not attached. |
---|
117 | .TP 5 |
---|
118 | 21 |
---|
119 | A hostname couldn't be resolved. |
---|
120 | .PP |
---|
121 | If more than one filesystem argument is specified, the exit status can |
---|
122 | be either 0, 1, or 3 as listed above, or: |
---|
123 | .TP 5 |
---|
124 | 2 |
---|
125 | Something went wrong with one of the hosts or filesystems. |
---|
126 | .PP |
---|
127 | If an error is encountered while manipulating one filesystem in the |
---|
128 | list, \fIfsid\fP continues with the other filesystems and returns |
---|
129 | the exit status 2 after attempting to map or unmap all the other |
---|
130 | filesystems. |
---|
131 | |
---|
132 | .SH NOTE |
---|
133 | The programs \fIattach(1)\fP, \fIdetach(1)\fP, \fIfsid(1)\fP, and |
---|
134 | \fIzinit(8)\fP are all really the same program. Typically |
---|
135 | \fIdetach(1)\fP, \fIfsid(1)\fP and \fIzinit(8)\fP are links to |
---|
136 | \fIattach\fP. Argv[0] is used to determine which one of the four |
---|
137 | programs are run. This may be overridden by specifying -P |
---|
138 | \fIprogname\fP, where \fIprogname\fP should be one of the above four |
---|
139 | program names. |
---|
140 | |
---|
141 | .SH FILES |
---|
142 | |
---|
143 | /usr/tmp/attachtab |
---|
144 | |
---|
145 | .SH "SEE ALSO" |
---|
146 | |
---|
147 | \fIattach(1)\fP |
---|
148 | .br |
---|
149 | \fIKerberosintro(3)\fP |
---|
150 | |
---|
151 | .SH AUTHOR |
---|
152 | Robert French, Project Athena |
---|
153 | .br |
---|
154 | Copyright 1988, Massachusetts Institute of Technology |
---|
155 | |
---|
156 | .SH BUGS |
---|