The first part of debugging a problem is figuring out what's going on. This page aims to document the myraid ways of figuring out what's going on, and how to expose non-obvious problems.

Basic unix

• id
• whoami
• ldapwhoami

Kerberos/AFS Users

• klist [filename]: Shows your current kerberos tokens, or optionally whose tokens are in the given cache (you will probably have to sudo up to read other people's ticket caches)
• tokens: Shows the AFS tokens for the current PAG
• groups: If there is a group without a name and a high number ( like 1099556587 ), that is the current PAG group number
• pts examine <entity>: Shows AFS database information about a given entity (username, group, id, etc)

• ktutil: Used to read and write keytabs, and let you see the key version number in a keytab
• kadmin: Lets you get information on other principals (see getprinc). It also shows you the key version number for keytabs so you can compare to a given file.

AFS volumes

• vos examine <volumename>
• vos listvldb [-server server] [-partition partition] Shows VLDB information, optionally restricted by the given server and partition
• fs lsmount <directory> Shows AFS mount info for the given directory

Other AFS

• fs lsacl <directory>: Shows current ACL
• fs lq <directory>: Shows current volume quota for the current volume