AuthLog - Traces Authentication Server operations


The AuthLog file records a trace of Authentication Server (kaserver process) operations on the local machine and describes any error conditions it encounters.

If the AuthLog file does not exist in the /usr/afs/logs directory when the Authentication Server starts, the server process creates it and writes initial start-up messages to it. If there is an existing file, the Authentication Server renames it to AuthLog.old, overwriting the existing AuthLog.old file if it exists.

The file is in ASCII format. Administrators listed in the /usr/afs/etc/UserList file can use the bos getlog command to display its contents. Alternatively, log onto the server machine and use a text editor or a file display command such as the UNIX cat command. By default, the mode bits on the AuthLog file grant the required r (read) permission to all users.

The Authentication Server records operations only as it completes them, and cannot recover from failures by reviewing the file. The log contents are useful for administrative evaluation of process failures and other problems.


The Authentication Server is obsolete and is provided only for sites that need to use it while preparing for a migration to Kerberos KDC. It will be removed in a future version of OpenAFS.


UserList(5), bos_getlog(8), kaserver(8)


IBM Corporation 2000. <> All Rights Reserved.

This documentation is covered by the IBM Public License Version 1.0. It was converted from HTML to POD by software written by Chas Williams and Russ Allbery, based on work by Alf Wachsmann and Elizabeth Cassell.