OSF DCE Administration Guide--Core Components
Creating and Maintaining Accounts
changes in an attribute list. The -add and -remove options are not supported with the
account modify command because each account attribute must be present and must
have a value.
31.5.5 Deleting Accounts
The following example illustrates the use of the dcecp account delete command to
delete the account for the principal mahler:
dcecp> account delete mahler
If you delete a group or organization, you will also automatically delete any accounts
that are associated with that group or organization.
You can delete multiple accounts with one account delete command. To do so enclose
the names of the account principals in braces, separated by spaces. For example, to
delete accounts for bach, britten, and mahler, you would enter
dcecp> account delete {bach britten mahler}
31.6 Creating, Maintaining, and Deleting Keytab Files
The following dcecp commands allow you to create, maintain, and delete keytab files:
keytab create Creates keytab files and all their key entries.
keytab delete Deletes keytab files and all their key entries.
keytab add Adds key entries to keytab files.
keytab remove Removes key entries from keytab files.
The following subsections describe how to manage keytab files.
31.6.1 The Keytab File
Keytabs files are stored on the same machine as the servers whose keys they contain.
You can access them remotely and locally using dcecp. For remote access, dcecp uses
dced interfaces. The -local option to the dcecp keytab command allows you to access
the local keytab files without using dced.
Because dced provides remote access to the keytab files, the files are defined as dced
objects, and those objects are stored in the dced-controlled portion of the namespace
under the keytab directory. The dced keytab object consists of a UUID to identify the
124243 Tandem Computers Incorporated 31− 13