KRB5_ANAME_TO_LOCALNAME (3) | C library functions | Unix Manual Pages



KRB5_ANAME_TO_LOCALNAME (3) \| C library functions \| Unix Manual Pages \| :man▋ NAME krb5_aname_to_localname - converts a principal to a system local name. CONTENTS Library Synopsis Description See Also LIBRARY Kerberos 5 Library (libkrb5, -lkrb5) SYNOPSIS .In krb5.h krb5_boolean .Fo krb5_aname_to_localname "krb5_context context" "krb5_const_principal name" "size_t lnsize" "char lname"* .Fc DESCRIPTION This function takes a principal name, verifies its in the local realm (using `krb5_get_default_realms`) and then returns the local name of the principal. If name isn’t in one of the local realms and error is returned. If size ( lnsize) of the local name ( lname) is to small, an error is returned. `krb5_aname_to_localname` should only be use by application that implements protocols that doesn’t transport the login name and thus needs to convert a principal to a local name. Protocols should be designed so that the it autheticates using Kerberos, send over the login name and then verifies in the principal that authenticated is allowed to login and the login name. A way to check if a user is allowed to login is using the function `krb5_kuserok`. SEE ALSO krb5_get_default_realms(3), krb5_kuserok(3)

Created by Blin Media, 2008-2013