Account management using password authentication

[subauth.git] / client / subauth.1.txt

diff --git a/client/subauth.1.txt b/client/subauth.1.txt
index d047f55b9e7f97f9722ea45bfdcd9579468a38ca..9db0e2d24fa564d0967b93c5a0b551ba629558e2 100644 (file)
--- a/client/subauth.1.txt
+++ b/client/subauth.1.txt
@@ -96,6 +96,15 @@ OPERATIONS
        in the given zone. Requires *--zone*. Optionally, you can specify a *--user*
        to test somebody else's credentials.
 
+*--allow-passwd-auth*::
+       Allow administration of our account in a given zone to anybody, who
+       knows our password. Requires *--zone*. Depending on the local setup,
+       this may for example enable passowrd changes from webmail interface.
+
+*--disallow-passwd-auth*::
+       Prevent other users from administration of our account in a given zone
+       using password authentication. Requires *--zone*.
+
 *Administrator commands*
 
 *--create-acct*::
@@ -131,6 +140,11 @@ OPTIONS
        which is either "*h*", "*m*", or "*s*". Maximum lifetime can be limited
        by zone configuration.
 
+*--auth-passwd*::
+       Ask for target user's account passowrd to authorize the operation.
+       Note that password authentication has to be explicitly enabled on
+       target account. Requires *--zone* and *--user*.
+
 *--socket=*'path'::
        Communicate with the subauth daemon through the given socket instead
        of the default one.