krb5_get_server_rcache()--Generate Replay Cache for Server Use
Syntax
#include <krb5.h> krb5_error_code krb5_get_server_rcache( krb5_context context, krb5_const krb5_data * piece); krb5_rcache * ret_rcache);Service Program Name: QSYS/QKRBGSS
Default Public Authority: *USE
Threadsafe: Yes
The krb5_get_server_rcache() function generates a unique replay cache name and then opens the replay cache. The piece parameter is used to differentiate this replay cache from others currently in use on the system by the same user. The generated cache name is in the form rc_piece_uid and uses the default replay cache type.
Authorities
Object Referred to | Data Authority Required |
---|---|
Each directory in the path name preceding the replay cache file | *X |
Parent directory of the replay cache file, if KRB5RCACHEDIR is specified and if the replay cache file is being created | *WX |
Replay cache file | *RW |
Parameters
- context (Input)
- The Kerberos context.
- piece (Input)
- The unique portion of the replay cache name. It should consist of
displayable characters.
- ret_rcache (Output)
- The replay cache handle. The krb5_rc_close() routine should be called to close the replay cache when it is no longer needed.
Return Value
If no errors occur, the return value is 0. Otherwise, a Kerberos error code is returned.
Error Messages
Message ID | Error Message Text |
---|---|
CPE3418 E | Possible APAR condition or hardware failure. |
Usage Notes
- The replay cache is initialized if it cannot be recovered. The clock skew value is obtained from the Kerberos context if it is necessary to initialize the cache.
API introduced: V5R1
[ Back to top | Security APIs | UNIX-Type APIs | APIs by category ]