newkey.1m

newkey(1M) newkey(1M)

NAME

newkey - create a new Difﬁe-Hellman key pair in the publickey database

SYNOPSIS

newkey -h hostname [ -s nis

| files | ldap ]

newkey -u username [ -s nis

| files | ldap ]

DESCRIPTION

newkey establishes new public keys for users and machines on the network. These keys are needed

when using secure RPC or secure NFS service.

newkey prompts for a password for the given username or hostname and then creates a new

public/secret Difﬁe-Hellman 192 bit key pair for the user or host. The secret key is encrypted with the

given password. The key pair can be stored in the

/etc/publickey ﬁle, the NIS

publickey map, or

user/host entries in the LDAP directory.

newkey consults the publickey entry in the name service switch conﬁguration ﬁle (see

nsswitch.conf(4)) to determine which naming service is used to store the secure RPC keys. If the

pub-

lickey entry speciﬁes a unique name service,

newkey will add the key in the speciﬁed name service.

However, if there are multiple name services listed,

newkey cannot decide which source to update and

will display an error message. The user is required to specify the source explicitly with the

-s

option.

In the case of NIS,

newkey should be run by the superuser on the master NIS server for that domain. In

the case of LDAP, newkey should be run by the superuser on a machine that has permission to update

the user/host entries in the LDAP directory.

Options

-h hostname Create a new public/secret key pair for the privileged user at the given hostname .

Prompts for a password for the given hostname .

-u username Create a new public/secret key pair for the given username . Prompts for a pass-

word for the given username.

-s nis | files | ldap

Update the database in the speciﬁed source: nis (for NIS), files,orldap

(LDAP). Other sources may be available in the future.

WARNINGS

HP-UX 11i Version 2 is the last HP-UX release on which NIS+ is supported. LDAP is the recommended

replacement for NIS+. HP fully supports the industry standard naming services based on LDAP.

AUTHOR

newkey was developed by Sun Microsystems, Inc.

PAGE 1
newkey(1M) newkey(1M) NAME newkey - create a new Diffie-Hellman key pair in the publickey database SYNOPSIS newkey -h hostname [ -s nis | files | ldap ] newkey -u username [ -s nis | files | ldap ] DESCRIPTION newkey establishes new public keys for users and machines on the network. These keys are needed when using secure RPC or secure NFS service. newkey prompts for a password for the given username or hostname and then creates a new public/secret Diffie-Hellman 192 bit key pair for the user or host.
PAGE 2
(Notes) A (Notes) nA 2 Hewlett-Packard Company −1− HP-UX 11i Version 3: September 2010