krb5_cc_initialize()--Initialize Credentials Cache

Syntax

 #include <krb5.h>

 krb5_error_code krb5_cc_initialize(
     krb5_context     context,
     krb5_ccache      ccache,
     krb5_principal     principal);

  Service Program Name: QSYS/QKRBGSS

  Default Public Authority: *USE

  Threadsafe: Yes

The krb5_cc_initialize() function initializes a credentials cache. Any existing credentials are discarded and the principal name for the cache is set to the value specified. The principal name is the default client name for tickets that will be placed in the cache. A new cache must be initialized before tickets can be stored in the cache.

Authorities

When the credentials cache is of type "FILE" (see krb5_cc_resolve() for more information on cache types), the default behavior is that the credentials cache file is created in the /QIBM/UserData/OS400/NetworkAuthentication/creds directory. The placement of the credentials cache file can be changed by setting the KRB5CCNAME environment variable.

If the credentials cache file does not reside in the default directory, the following authorities are required:

Object Referred to	Data Authority Required
Each directory in the path name preceding the parent directory	*X
Parent directory if cache file is being created	*WX
Cache file, if being reused	*RW

If the credentials cache file resides in the default directory, the following authorities are required:

Object Referred to	Data Authority Required	Object Authority Required
All directories in the path name	*X	None
Credentials cache file	*RW	None

Parameters

context (Input): The Kerberos context.
ccache (Input): The credentials cache handle.
principal (Input): The default principal for the cache.

Return Value

If no errors occur, the return value is 0. Otherwise, a Kerberos error code is returned.

Error Messages

Message ID	Error Message Text
CPE3418 E	Possible APAR condition or hardware failure.

API introduced: V5R1

[ Back to top | Security APIs | UNIX-Type APIs | APIs by category ]