.k5login file

Edit online

The .k5login file is used when Kerberos V.5 authentication is used for the secure rcmds. This file specifies which DCE principals on which cells are allowed access to the user's account.

The file is located at $HOME/.k5login. It should be owned by the local user and the owner should have read permission on this file. The minimum permission setting for this file is 400.

The .k5login file contains a list of the DCE principal/cell pairs allowed to access the account. The principal/cell pairs are kept in Kerberos format (as opposed to DCE format). For example, if the file contains

    UserA@Cell1

then the DCE principal UserA on the DCE cell Cell1 can access the account.

If the DCE principal is the same as the user's account name, and if there is no$HOME/.k5login file for the user's account, the DCE principal gains access to the account (provided Kerberos V.5 authentication is configured).

For more information about Kerberos V.5 authentication, see Authentication and the secure rcmds.