Removes any existing PAG association within the current process' credentials.
paginit [ -R module_name ] [ username ]
The pagdel command will remove the PAG identifier from the current process' credentials structure. If the -R option is omitted, the registry attribute will be used as the module_name.
-R module_name | Specifies a load module found in /usr/lib/security/modules.cfg. The load_module will be asked to delete any PAG currently associated with the process. |
Access Control: This command should grant execute (x) access only to the root user and members of the security group. This command should be installed as a program in the trusted computing base (TCB). The command should be owned by the root user with the setuid (SUID) bit set.
USER_PagDelete
To remove the PKI authentication certificate associated with the current process, type:
pagdel -R FPKI
The paginit and paglist commands.