1KLIST(1)                  BSD General Commands Manual                 KLIST(1)
2

NAME

4     klist — list Kerberos credentials
5

SYNOPSIS

7     klist [-c cache | --cache=cache] [-s | -t | --test] [-T | --tokens]
8           [-5 | --v5] [-v | --verbose] [-l | --list-caches] [-f] [--version]
9           [--help]
10

DESCRIPTION

12     klist reads and displays the current tickets in the credential cache
13     (also known as the ticket file).
14
15     Options supported:
16
17     -c cache, --cache=cache
18             credential cache to list
19
20     -s, -t, --test
21             Test for there being an active and valid TGT for the local realm
22             of the user in the credential cache.
23
24     -T, --tokens
25             display AFS tokens
26
27     -5, --v5
28             display v5 cred cache (this is the default)
29
30     -f      Include ticket flags in short form, each character stands for a
31             specific flag, as follows:
32                   F    forwardable
33                   f    forwarded
34                   P    proxiable
35                   p    proxied
36                   D    postdate-able
37                   d    postdated
38                   R    renewable
39                   I    initial
40                   i    invalid
41                   A    pre-authenticated
42                   H    hardware authenticated
43
44             This information is also output with the --verbose option, but in
45             a more verbose way.
46
47     -v, --verbose
48             Verbose output. Include all possible information:
49
50                   Server
51                         the principal the ticket is for
52
53                   Ticket etype
54                         the encryption type used in the ticket, followed by
55                         the key version of the ticket, if it is available
56
57                   Session key
58                         the encryption type of the session key, if it's dif‐
59                         ferent from the encryption type of the ticket
60
61                   Auth time
62                         the time the authentication exchange took place
63
64                   Start time
65                         the time that this ticket is valid from (only printed
66                         if it's different from the auth time)
67
68                   End time
69                         when the ticket expires, if it has already expired
70                         this is also noted
71
72                   Renew till
73                         the maximum possible end time of any ticket derived
74                         from this one
75
76                   Ticket flags
77                         the flags set on the ticket
78
79                   Addresses
80                         the set of addresses from which this ticket is valid
81
82     -l, --list-caches
83             List the credential caches for the current users, not all cache
84             types supports listing multiple caches.
85

SEE ALSO

87     kdestroy(1), kinit(1)
88
89HEIMDAL                         October 6, 2005                        HEIMDAL
Impressum