authck(1M)                                                       authck(1M)




 NAME    [Toc]    [Back]
      authck - check internal consistency of Authentication database

 SYNOPSIS    [Toc]    [Back]
      authck [-p] [-t] [-a] [-v] [-d [ domainname ]]

 DESCRIPTION    [Toc]    [Back]
      authck checks both the overall structure and internal field
      consistency of all components of the Authentication database.  It
      reports all problems it finds.  Only users who have the superuser
      capability can run this command.  When pwck is used with the -s
      option, authck is run with the -p option automatically.

    Options    [Toc]    [Back]
      authck recognizes the following options and tests:

           -p      Check the Protected Password database.  The Protected
                   Password database and /etc/passwd are checked for
                   completeness such that neither contains entries not in
                   the other.  The cross references between the Protected
                   Password database and /etc/passwd are checked to make
                   sure that they agree.  However, if Nis+ is configured in
                   your system, the password table is also checked before
                   reporting a discrepancy.  This means that a discrepancy
                   would not be reported for a user that does NOT exist in
                   /etc/passwd but exists in the Protected Password database
                   as well as the Nis+ passwd table.  Fields in the
                   Protected Password database are then checked for
                   reasonable values.  For example, all time stamps of past
                   events are checked to make sure that they have times less
                   than the times returned by time(2).

           -t      Fields in the Terminal Control database are checked for
                   reasonable values.  All time stamps of past events are
                   checked to make sure they have times less than those
                   returned by time(2).

           -a      Shorthand equivalent of using the -p and -t options
                   together in a single command.

           -v      Provide running diagnostics as the program proceeds.
                   Produce warnings when unusual conditions are encountered
                   that might not cause program errors in login, password
                   and su programs.

           -d      Removes Protected Password database entries that are not
                   found in the Nis+ passwd table.  Nis+ users may have an
                   entry in the Protected database and not in /etc/passwd.
                   Thus, this option removes orphaned Protected database
                   entries: orphaned entries can exist for deleted Nis+
                   users.  The optional domainname specifies the desired



 Hewlett-Packard Company            - 1 -   HP-UX 11i Version 2: August 2003






 authck(1M)                                                       authck(1M)




                   Nis+ domain to use for the passwd table.  If domainname
                   is not specified, the local domain name is used.

 FILES    [Toc]    [Back]
      /etc/passwd                                  System password file
      /tcb/files/auth/*/*                          Protected Password
                                                   database
      /tcb/files/ttys                              Terminal Control database
      /tcb/files/auth/system/default               System Defaults database
      /usr/sbin/authck

 AUTHOR    [Toc]    [Back]
      authck was developed by HP.

 SEE ALSO    [Toc]    [Back]
      getprpwent(3), getprtcent(3), getprdfent(3), authcap(4).


 Hewlett-Packard Company            - 2 -   HP-UX 11i Version 2: August 2003