dfsgwd(8dfs) — Maintenance
NAME
dfsgwd - Initializes the Gateway Server process for the DFS/NFS Secure Gateway
SYNOPSIS
dfsgwd [-service service_number] [-file log_file] [-verbose] [-help]
OPTIONS
Specifies the port number to be used to communicate with the dfsgwd process on the Gateway Server machine. By default, the process uses port number 438, the port number defined for the Gateway Server process in the /etc/services file or Network Information Services (NIS) services map file (see the services reference page for more information). Specifies the full pathname of the log file in which the dfsgwd process records information about the operations it performs. By default, the dfsgwd process writes output to the log file named dcelocal/var/dfs/adm/DfsgwLog. Directs the process to write a message of the following form to the indicated log file each time an entry is added to the authentication table (AT): INFO: Adding ticket for "username" where username is the name of the user for whom the entry is added. Displays the online help for this command. All other valid options specified with this option are ignored.
DESCRIPTION
The dfsgwd command initializes the Gateway Server process. The dfsgwd process runs on machines configured as DFS clients to enable remote authentication via the dfs_login command. The dfsgwd process works with the dfs_login command to obtain DCE credentials for users of NFS clients. The DCE credentials provide users with authenticated access to data in DFS.
The Gateway Server process manipulates mappings for authenticated users in the authentication table on the Gateway Server machine. Each mapping records the following information for an authenticated user: The user’s UNIX user identification number (UID) The network address of the NFS client from which the user has authenticated access to DFS The PAG that stores the user’s DCE ticket-granting ticket (TGT)
The dfs_login and dfs_logout commands provide a remote mechanism for creating and deleting entries in the authentication table on a Gateway Server machine. Commands in the dfsgw command suite provide a local administrative interface to the authentication table on a machine configured as a Gateway Server.
The binary file for the dfsgwd process resides in dcelocal/bin. The process is normally run on a DFS client that is exporting a mount point for /..., the root of the DCE namespace, via NFS. The process runs as the DCE principal hosts/hostname/dfsgw-server.
The dfsgwd process is usually started and controlled by the Basic OverSeer (BOS) Server (bosserver) process. The BOS Server restarts each process it monitors whenever the system is rebooted. If the dfsgwd process is not controlled by the BOS Server, the dfsgwd process runs in the foreground by default. See Part 1 of the for information about configuring the dfsgwd process on a machine to be configured as a Gateway Server.
The dfsgwd process writes output about the operations it performs to a log file. By default, it writes output to the file named dcelocal/var/dfs/adm/DfsgwLog. You can use the -file option to name a different log file. If the dfsgwd process is controlled by the BOS Server, you can use the bos getlog command to read the log file.
Privilege Required
The issuer must be logged into the local machine as root.
FILES
The default log file for the dfsgwd process. You can use the -file option to specify a different pathname for the log file.
RELATED INFORMATION
Commands: dfsgw(8dfs), bos getlog(8dfs), bosserver(8dfs), dfs_login(8dfs), dfs_logout(8dfs)
Files: DfsgwLog(4dfs)