$Author: jtkohl $
$Header: kinit.1,v 4.6 89/01/23 11:39:11 jtkohl Exp $
Copyright 1989 by the Massachusetts Institute of Technology.
For copying and distribution information,
please see the file <mit-copyright.h>.
If you are logged in to a workstation that is running the toehold service, you do not have to use kinit. The toehold login procedure will log you into Kerberos automatically. You will need to use kinit only in those situations in which your original tickets have expired. (Tickets expire in about a day.) Note as well that toehold will automatically destroy your tickets when you logout from the workstation.
When you use kinit without options, the utility prompts for your username and Kerberos password, and tries to authenticate your login with the local Kerberos server.
If Kerberos authenticates the login attempt, kinit retrieves your initial ticket and puts it in the ticket file specified by your KRBTKFILE environment variable. If this variable is undefined, your ticket will be stored in the /tmp directory, in the file tktuid , where uid specifies your user identification number.
If you have logged in to Kerberos without the benefit of the workstation toehold system, make sure you use the kdestroy command to destroy any active tickets before you end your login session. You may want to put the kdestroy command in your \.logout file so that your tickets will be destroyed automatically when you logout.
The options to kinit are as follows:
7 -i kinit prompts you for a Kerberos instance.
-r kinit prompts you for a Kerberos realm. This option lets you authenticate yourself with a remote Kerberos server.
-v Verbose mode. kinit prints the name of the ticket file used, and a status message indicating the success or failure of your login attempt.
-l kinit prompts you for a ticket lifetime in minutes. Due to protocol restrictions in Kerberos Version 4, this value must be between 5 and 1275 minutes.
kerberos(1), kdestroy(1), klist(1), toehold(1)
Clifford Neuman, MIT Project Athena