SECSTORED(1)                                         SECSTORED(1)

     NAME
          secstored, secuser - secstore commands

     SYNOPSIS
          secstored [-R] [-S servername] [-s tcp!*!5356] [-x mount-
          point]
          secuser [-v] username

     DESCRIPTION
          Secstored serves requests from secstore(1). The -R option
          supplements the password check with a call to a RADIUS
          server, for checking hardware tokens or other validation.
          The -xmountpoint option specifies an alternative to the
          default network /net.

          Secuser is an administrative command that runs on the sec-
          store machine, normally the authserver, to create new
          accounts and to change status on existing accounts.  It
          prompts for account information such as password and expira-
          tion date, writing to /usr/local/plan9/secstore/who/$uid.
          The /usr/local/plan9/secstore directory should be created
          mode 770 for the userid or groupid of the secstored process.

          By default, secstored warns the client if no account exists.
          If you prefer to obscure this information, use secuser to
          create an account FICTITIOUS.

     FILES
          /usr/local/plan9/secstore/who/$uid secstore account name,
          expiration date, verifier
          /usr/local/plan9/secstore/store/$uid/ users' files
          /usr/local/plan9/ndb/auth for mapping local userid to RADIUS
          userid

     SOURCE
          /usr/local/plan9/src/cmd/auth/secstore

     SEE ALSO
          secstore(1)

     Page 1                       Plan 9            (printed 12/22/24)