Section: AFS File Reference (5)
kaserver.DB0, kaserver.DBSYS1 - The Authentication Database and associated log
file contains the Authentication Database, whichrecords server encryption keys and an encrypted form of all userpasswords. The Authentication Server (kaserver
process) uses theinformation in the database to enable secured communications between AFSserver and client processes.
The kaserver.DBSYS1 file is a log file in which the AuthenticationServer logs each database operation before performing it. When anoperation is interrupted, the Authentication Server replays the log tocomplete the operation.
Both files are in binary format and reside in the /usr/afs/db directoryon each of the cell's database server machines. When the AuthenticationServer starts or restarts on a given machine, it establishes a connectionwith its peers and verifies that its copy of the database matches the copyon the other database server machines. If not, the Authentication Serverscall on AFS's distributed database technology, Ubik, to distribute to allof the machines the copy of the database with the highest version number.
Always use the commands in the kas suite to administer the AuthenticationDatabase. It is advisable to create an archive copy of the database on aregular basis, using a tool such as the UNIX tar command.
IBM Corporation 2000. <http://www.ibm.com/
> All Rights Reserved.
This documentation is covered by the IBM Public License Version 1.0. It wasconverted from HTML to POD by software written by Chas Williams and RussAllbery, based on work by Alf Wachsmann and Elizabeth Cassell.
- SEE ALSO
This document was created byman2html,using the manual pages.