'u' - The Unjoin Command
The unjoin command is specific to the authentication DBM. It is used to unjoin (remove) a person in the PUID database from an
authentication realm. Warning:
unjoining a person from a realm permanently destroys that person's authentication data (password, X.509 certificate). Its
companion command,
join, adds a person to a realm.
This is a restricted command -- Only
realm administrators may
unjoin users from a realm.
Symbol
The puidnetd.h symbol for the unjoin command is PUIDNETD_CMD_UNJOIN.
Keys
The standard keys for the unjoin command are either PUID or alias.
a -- alias (PUIDNETD_DATA_AKA); do an exact match on the alias field value.
p -- PUID (PUIDNETD_DATA_PUID); do an exact match on the PUID field value.
Reply
If the specified key is found and the unjoin is done, the reply message will contain a positive acknowledgement
(ACK); if not, a negative
acknowledgement (NAK).
A NAK may be accompanied by
these fields. The field symbols come from puidnetd.h.
e -- an error code (PUIDNETD_DATA_ERRC); it accompanies a NAK reply.
M -- a message (PUIDNETD_DATA_MSG); it accompanies a NAK reply.
Required Fields
The unjoin command requires a minimal realm record with a valid realm name.
Additional Fields
Other realm record fields may be included, but are ignored.
Example
Unjoin PUID 00123-45678 from the Purdue realm:
u p12345678 @Rpurdue @