Kerberos: Difference between revisions
Jump to navigation
Jump to search
(Created page with "== keytab management == A keytab is a file containing pairs of Kerberos principals and encrypted keys (which are derived from the Kerberos password). You can use a keytab file to authenticate to various remote systems using Kerberos without entering a password. However, when you change your Kerberos password, you will need to recreate all your keytabs. Keytab files are commonly used to allow scripts to automatically authenticate using Kerberos, without requiring human...") |
No edit summary |
||
| Line 10: | Line 10: | ||
klist -k /etc/krb5.keytab | klist -k /etc/krb5.keytab | ||
# or | # or | ||
ktutil | ktutil | ||
read_kt /etc/krb5.keytab | |||
list | |||
Revision as of 20:07, 30 November 2024
keytab management
A keytab is a file containing pairs of Kerberos principals and encrypted keys (which are derived from the Kerberos password). You can use a keytab file to authenticate to various remote systems using Kerberos without entering a password. However, when you change your Kerberos password, you will need to recreate all your keytabs.
Keytab files are commonly used to allow scripts to automatically authenticate using Kerberos, without requiring human interaction or access to password stored in a plain-text file. The script is then able to use the acquired credentials to access files stored on a remote system.
ref https://servicenow.iu.edu/kb?id=kb_article_view&sysparm_article=KB0024956
list contents
klist -k /etc/krb5.keytab
# or ktutil read_kt /etc/krb5.keytab list