xref: /netbsd-src/crypto/external/bsd/heimdal/dist/kuser/klist.1 (revision afab4e300d3a9fb07dd8c80daf53d0feb3345706) 
1.\"	$NetBSD: klist.1,v 1.5 2023/06/19 21:41:42 christos Exp $
2.\"
3.\" Copyright (c) 2000 - 2005 Kungliga Tekniska Högskolan
4.\" (Royal Institute of Technology, Stockholm, Sweden).
5.\" All rights reserved.
6.\"
7.\" Redistribution and use in source and binary forms, with or without
8.\" modification, are permitted provided that the following conditions
9.\" are met:
10.\"
11.\" 1. Redistributions of source code must retain the above copyright
12.\"    notice, this list of conditions and the following disclaimer.
13.\"
14.\" 2. Redistributions in binary form must reproduce the above copyright
15.\"    notice, this list of conditions and the following disclaimer in the
16.\"    documentation and/or other materials provided with the distribution.
17.\"
18.\" 3. Neither the name of the Institute nor the names of its contributors
19.\"    may be used to endorse or promote products derived from this software
20.\"    without specific prior written permission.
21.\"
22.\" THIS SOFTWARE IS PROVIDED BY THE INSTITUTE AND CONTRIBUTORS ``AS IS'' AND
23.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
24.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
25.\" ARE DISCLAIMED.  IN NO EVENT SHALL THE INSTITUTE OR CONTRIBUTORS BE LIABLE
26.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
27.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
28.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
29.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
30.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
31.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32.\" SUCH DAMAGE.
33.\"
34.\" Id
35.\"
36.Dd October  6, 2005
37.Dt KLIST 1
38.Os
39.Sh NAME
40.Nm klist
41.Nd list Kerberos credentials
42.Sh SYNOPSIS
43.Nm
44.Bk -words
45.Oo Fl c Ar cache \*(Ba Xo
46.Fl Fl cache= Ns Ar cache
47.Xc
48.Oc
49.Op Fl s | Fl t | Fl Fl test
50.Op Fl T | Fl Fl tokens
51.Op Fl 5 | Fl Fl v5
52.Op Fl v | Fl Fl verbose
53.Op Fl l | Fl Fl list-caches
54.Op Fl f
55.Op Fl Fl version
56.Op Fl Fl help
57.Ek
58.Sh DESCRIPTION
59.Nm
60reads and displays the current tickets in the credential cache (also
61known as the ticket file).
62.Pp
63Options supported:
64.Bl -tag -width Ds
65.It Fl c Ar cache , Fl Fl cache= Ns Ar cache
66credential cache to list
67.It Fl s , Fl t , Fl Fl test
68Test for there being an active and valid TGT for the local realm of
69the user in the credential cache.
70.It Fl T , Fl Fl tokens
71display AFS tokens
72.It Fl 5 , Fl Fl v5
73display v5 cred cache (this is the default)
74.It Fl f
75Include ticket flags in short form, each character stands for a
76specific flag, as follows:
77.Bl -tag -width  XXX -compact -offset indent
78.It F
79forwardable
80.It f
81forwarded
82.It P
83proxiable
84.It p
85proxied
86.It D
87postdate-able
88.It d
89postdated
90.It R
91renewable
92.It I
93initial
94.It i
95invalid
96.It A
97pre-authenticated
98.It H
99hardware authenticated
100.El
101.Pp
102This information is also output with the
103.Fl Fl verbose
104option, but in a more verbose way.
105.It Fl v , Fl Fl verbose
106Verbose output. Include all possible information:
107.Bl -tag -width XXXX -offset indent
108.It Server
109the principal the ticket is for
110.It Ticket etype
111the encryption type used in the ticket, followed by the key version of
112the ticket, if it is available
113.It Session key
114the encryption type of the session key, if it's different from the
115encryption type of the ticket
116.It Auth time
117the time the authentication exchange took place
118.It Start time
119the time that this ticket is valid from (only printed if it's
120different from the auth time)
121.It End time
122when the ticket expires, if it has already expired this is also noted
123.It Renew till
124the maximum possible end time of any ticket derived from this one
125.It Ticket flags
126the flags set on the ticket
127.It Addresses
128the set of addresses from which this ticket is valid
129.El
130.It Fl l , Fl Fl list-caches
131List the credential caches for the current users, not all cache types
132supports listing multiple caches.
133.Pp
134.El
135.Sh SEE ALSO
136.Xr kdestroy 1 ,
137.Xr kinit 1
138