NAME

       shisa - Shishi database interface

SYNOPSIS

       shisa [OPTION]... [REALM [PRINCIPAL]]...

DESCRIPTION

       Manipulate information stored in the Shisa user database.

       -h, --help
              Print help and exit

       -V, --version
              Print version and exit

   Operations:
       -a, --add
              Add realm or principal to database.

       -d, --dump
              Dump entries in database.

       -n, --key-add
              Add new key to a principal in database.

       --key-remove
              Remove a key from a principal in database.

       -l, --list
              List entries in database.

       -m, --modify
              Modify principal entry in database.

       -r, --remove
              Remove realm or principal from database.

   Parameters:
       -f, --force
              Allow removal of non-empty realms.  (default=off)

       --enabled
              Only dump or list enabled principals.  (default=off)

       --disabled
              Only dump or list disabled principals.  (default=off)

       --keys Print cryptographic key and password in hostkey format.  (default=off)

   Values:
       -E, --encryption-type=STRING
              Override  default  key  encryption  type.  Valid values include 'aes128', 'aes256',
              'aes' (same as 'aes256'), '3des', 'des-md5', 'des-md4', 'des-crc', 'des'  (same  as
              'des-md5'), and 'arcfour'.

       --key-version=NUMBER
              Version of key.

       --password[=STRING]
              Derive key from this password.

       --priority=NUMBER
              Specify  key  priority,  used  to differentiate between keys when multiple keys are
              eligible for use.  Higher value means higher priority.  (default is 0, which mean a
              random key of the best etype is chosen)

       --random
              Use a random key.  (default)

       --salt=STRING
              Use  specified  salt  for  deriving  key.   Defaults  to concatenation of realm and
              (unwrapped) principal name.

       --string-to-key-parameter=HEX
              Encryption algorithm specific parameter for

       password derivation.
              Currently only the AES

       algorithm can utilize this, where it is
              interpreted as the iteration count of the PKCS#5 PBKDF2 key deriver.

   Other options:
       -c, --configuration-file=FILE Use specified configuration file.

       -o, --library-options=STRING
              Parse string as configuration file statement.

       -v, --verbose
              Produce verbose output.  (default=off)

       -q, --quiet
              Don't produce any diagnostic output.  (default=off)

       Mandatory arguments to long options are mandatory for short options too.

AUTHOR

       Written by Simon Josefsson.

REPORTING BUGS

       Report bugs to: bug-shishi@gnu.org
       GNU Shishi home page: <https://www.gnu.org/software/shishi/>
       General help using GNU software: <https://www.gnu.org/gethelp/>

COPYRIGHT

       Copyright  ©  2022  Simon  Josefsson.   License  GPLv3+:  GNU  GPL  version  3  or   later
       <https://gnu.org/licenses/gpl.html>.
       This  is free software: you are free to change and redistribute it.  There is NO WARRANTY,
       to the extent permitted by law.

SEE ALSO

       The full documentation for shisa is maintained as a Texinfo manual.  If the info and shisa
       programs are properly installed at your site, the command

              info shishi

       should give you access to the complete manual.