1 | .\" $Source: /afs/dev.mit.edu/source/repository/athena/bin/attach/nfsid.1,v $ |
---|
2 | .\" $Header: /afs/dev.mit.edu/source/repository/athena/bin/attach/nfsid.1,v 1.3 1990-11-30 17:12:32 probe Exp $ |
---|
3 | .\" $Author: probe $ |
---|
4 | .\" |
---|
5 | .TH NFSID 1 "25 March 1988" |
---|
6 | .ds ]W MIT Project Athena |
---|
7 | .SH NAME |
---|
8 | fsid, nfsid \- Perform authorization functions to remote file servers |
---|
9 | .SH SYNOPSIS |
---|
10 | .nf |
---|
11 | fsid [ [ options ] [-f filesystem ...] [host ...] ] ... |
---|
12 | nfsid [ [ options ] [-f filesystem ...] [host ...] ] ... |
---|
13 | .fi |
---|
14 | .SH DESCRIPTION |
---|
15 | |
---|
16 | \fINfsid\fR is a system program which presents your credentials to an |
---|
17 | NFS server by the use of Kerberos authentication, allowing your |
---|
18 | workstation to access files on the server. Within Athena, the default |
---|
19 | permissions for a client workstation attempting to access an NFS |
---|
20 | filesystem are those of the user "nobody", meaning that a program |
---|
21 | running on the workstation ordinarily would not be allowed to modify |
---|
22 | any files on the NFS server. \fINfsid\fR sends a Kerberos |
---|
23 | authentication ticket over to the server which records an association |
---|
24 | between a workstation's IP address and the user's userid. |
---|
25 | |
---|
26 | .PP |
---|
27 | The following arguments to \fInfsid\fR modify its default behavior. |
---|
28 | All arguments are processed \fIin order\fR. Thus, if a -u option is |
---|
29 | followed by a -m option, the -m option will take precedence. |
---|
30 | |
---|
31 | .IP -map\ or\ -m |
---|
32 | Set the mapping function to "map user". This is the default, and is |
---|
33 | used to establish a mapping to a server. It requires that the user be |
---|
34 | authenticated. |
---|
35 | .IP -unmap\ or\ -u |
---|
36 | Set the mapping function to "unmap user". This is used to remove a |
---|
37 | mapping from a server. |
---|
38 | .IP -purge\ or\ -p |
---|
39 | Set the mapping function to "purge host". This is used to remove all |
---|
40 | mappings associated with the user's host. |
---|
41 | .IP -purgeuser\ or\ -r |
---|
42 | Set the mapping function to "purge user". This is used to remove all |
---|
43 | mappings associated with the user on the host. It requires that the |
---|
44 | user be authenticated. |
---|
45 | .IP -verbose\ or\ -v |
---|
46 | Display verbose information about the mapping operation. This is the |
---|
47 | default. |
---|
48 | .IP -quiet\ or\ -q |
---|
49 | Don't display verbose information. |
---|
50 | .IP -debug\ or\ -d |
---|
51 | Print debugging information. This will not normally be useful to users. |
---|
52 | .IP -all\ or\ -a |
---|
53 | Perform the current mapping operation for all hosts associated with |
---|
54 | filesystems in /usr/tmp/attachtab (see \fIattach(1)\fR). Note that a host |
---|
55 | may be referenced more than once if more than once filesystem is |
---|
56 | located on that host. |
---|
57 | .IP -filsys\ or\ -f |
---|
58 | Perform the current mapping operation for the servers associated with |
---|
59 | the indicated filesystems. The filesystems are retrieved from |
---|
60 | /usr/tmp/attachtab. |
---|
61 | |
---|
62 | .PP |
---|
63 | If the -f option is not specified, \fInfsid\fR takes a list of hosts |
---|
64 | (either names or internet addresses) as arguments and performs the |
---|
65 | specified mapping function. If -f is specified, it takes a list of |
---|
66 | filesystem names instead and uses /usr/tmp/attachtab to retrieve the |
---|
67 | server associated with each filesystem. |
---|
68 | |
---|
69 | .SH EXAMPLES |
---|
70 | |
---|
71 | .nf |
---|
72 | nfsid -m CHARON.MIT.EDU -u -f x11 |
---|
73 | .fi |
---|
74 | |
---|
75 | Establish a mapping for the user on the host CHARON.MIT.EDU and |
---|
76 | delete a mapping for the user on the host the holds the x11 filesystem. |
---|
77 | |
---|
78 | .nf |
---|
79 | nfsid -q -p -a |
---|
80 | .fi |
---|
81 | |
---|
82 | Purge the host's mappings on all servers that have filesystems mounted |
---|
83 | on the host, but don't display a message after each host is purged. |
---|
84 | |
---|
85 | .SH DIAGNOSTICS |
---|
86 | |
---|
87 | If \fInfsid\fR is executed with only a single filesystem or host |
---|
88 | argument, the exit status will be one of the following: |
---|
89 | .TP 5 |
---|
90 | 0 |
---|
91 | No error encountered. |
---|
92 | .TP 5 |
---|
93 | 1 |
---|
94 | Bad arguments. |
---|
95 | .TP 5 |
---|
96 | 3 |
---|
97 | Internal fatal error. |
---|
98 | .TP 5 |
---|
99 | 10 |
---|
100 | Keberos failure. |
---|
101 | .TP 5 |
---|
102 | 11 |
---|
103 | Host communication failure. |
---|
104 | .TP 5 |
---|
105 | 12 |
---|
106 | Authentication failure. |
---|
107 | .TP 5 |
---|
108 | 13 |
---|
109 | No reserved ports available. |
---|
110 | .TP 5 |
---|
111 | 20 |
---|
112 | A filesystem specified with -f was not attached. |
---|
113 | .TP 5 |
---|
114 | 21 |
---|
115 | A hostname couldn't be resolved. |
---|
116 | .PP |
---|
117 | If more than one filesystem argument is specified, the exit status can |
---|
118 | be either 0, 1, or 3 as listed above, or: |
---|
119 | .TP 5 |
---|
120 | 2 |
---|
121 | Something went wrong with one of the hosts or filesystems. |
---|
122 | .PP |
---|
123 | If an error is encountered while manipulating one filesystem in the |
---|
124 | list, \fInfsid\fR continues with the other filesystems and returns |
---|
125 | the exit status 2 after attempting to map or unmap all the other |
---|
126 | filesystems. |
---|
127 | |
---|
128 | .SH NOTE |
---|
129 | The programs \fIattach(1)\fR, \fIdetach(1)\fR, \fInfsid(1)\fR, and |
---|
130 | \fIzinit(8)\fR are all really the same program. Typically |
---|
131 | \fIdetach(1)\fR, \fInfsid(1)\fR and \fIzinit(8)\fR are links to |
---|
132 | \fIattach\fR. Argv[0] is used to determine which one of the four |
---|
133 | programs are run. This may be overridden by specifying -P |
---|
134 | \fIprogname\fR, where \fIprogname\fR should be one of the above four |
---|
135 | program names. |
---|
136 | |
---|
137 | .SH FILES |
---|
138 | |
---|
139 | /usr/tmp/attachtab |
---|
140 | |
---|
141 | .SH "SEE ALSO" |
---|
142 | |
---|
143 | \fIattach(1)\fR |
---|
144 | .br |
---|
145 | \fIKerberosintro(3)\fR |
---|
146 | |
---|
147 | .SH AUTHOR |
---|
148 | Robert French, Project Athena |
---|
149 | .br |
---|
150 | Copyright 1988, Massachusetts Institute of Technology |
---|
151 | |
---|
152 | .SH BUGS |
---|