# kadmin.local
kadmin> listprincs
Create a principal
kadmin> ank articy
Create another principal named articy/admin,
kadmin> ank articy/admin
Assign kerberos admin role to articy/admin
add below entry into
/var/lib/kerberos/krb5kdc/kadm5.aclarticy/admin *
restart Kerberos and its admin service
service kadmind restart
service kbd restart
Start kadmin shell
# kadmin -p articy/admin
kadmin> listprincs
Create a principal for machine:
kadmin> ank -randkey host/was.goweekend.ca@GOWEEKEND.CA
Extract the key for the host principal to a keytab file
kadmin> ktadd -k /var/tmp/was.goweekend.ca.keytab host/was.goweekend.ca
No comments:
Post a Comment