xref: /titanic_50/usr/src/man/man1/keylogout.1 (revision 91d7f85e02991954d1e1bd44673df567ad8dcc87)
te
Copyright (C) 2005, Sun Microsystems, Inc. All Rights Reserved
The contents of this file are subject to the terms of the Common Development and Distribution License (the "License"). You may not use this file except in compliance with the License.
You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE or http://www.opensolaris.org/os/licensing. See the License for the specific language governing permissions and limitations under the License.
When distributing Covered Code, include this CDDL HEADER in each file and include the License file at usr/src/OPENSOLARIS.LICENSE. If applicable, add the following below this CDDL HEADER, with the fields enclosed by brackets "[]" replaced with your own identifying information: Portions Copyright [yyyy] [name of copyright owner]
KEYLOGOUT 1 "Dec 2, 2005"
NAME
keylogout - delete stored secret key with keyserv
SYNOPSIS

/usr/bin/keylogout [-f]
DESCRIPTION

keylogout deletes the key stored by the key server process keyserv(1M). Further access to the key is revoked; however, current session keys might remain valid until they expire or are refreshed.

Deleting the keys stored by keyserv causes any background jobs or scheduled at(1) jobs that need secure RPC services to fail. Since only one copy of the key is kept on a machine, it is a bad idea to place a call to this command in your .logout file since it affects other sessions on the same machine.

If multiple NIS+ authentication mechanisms are configured for the system, then all keys stored by the key server process is deleted, including keys that are no longer configured.

OPTIONS

The following options are supported: -f

Force keylogout to delete the secret key for the superuser. By default, keylogout by the superuser is disallowed because it would break all RPC services, such as NFS, that are started by the superuser.

SEE ALSO

at(1), chkey(1), login(1), keylogin(1), keyserv(1M), newkey(1M), nisauthconf(1M), publickey(4), attributes(5)

NOTES

NIS+ might not be supported in future releases of the Solaris operating system. Tools to aid the migration from NIS+ to LDAP are available in the current Solaris release. For more information, visit http://www.sun.com/directory/nisplus/transition.html.