diff options
Diffstat (limited to 'src/man/kadmin.man')
| -rw-r--r-- | src/man/kadmin.man | 9 |
1 files changed, 8 insertions, 1 deletions
diff --git a/src/man/kadmin.man b/src/man/kadmin.man index 5105eca28e76..008d9bf5df98 100644 --- a/src/man/kadmin.man +++ b/src/man/kadmin.man @@ -1,6 +1,6 @@ .\" Man page generated from reStructuredText. . -.TH "KADMIN" "1" " " "1.15.1" "MIT Kerberos" +.TH "KADMIN" "1" " " "1.16" "MIT Kerberos" .SH NAME kadmin \- Kerberos V5 database administration program . @@ -705,6 +705,13 @@ accepted values. Enables One Time Passwords (OTP) preauthentication for a client \fIprincipal\fP\&. The \fIvalue\fP is a JSON string representing an array of objects, each having optional \fBtype\fP and \fBusername\fP fields. +.TP +.B \fBpkinit_cert_match\fP +Specifies a matching expression that defines the certificate +attributes required for the client certificate used by the +principal during PKINIT authentication. The matching expression +is in the same format as those used by the \fBpkinit_cert_match\fP +option in \fIkrb5.conf(5)\fP\&. (New in release 1.16.) .UNINDENT .sp This command requires the \fBmodify\fP privilege. |