table of contents
KTUTIL(1) | MIT Kerberos | KTUTIL(1) |
NAME¶
ktutil - Kerberos keytab file maintenance utility
SYNOPSIS¶
ktutil
DESCRIPTION¶
The ktutil command invokes a command interface from which an administrator can read, write, or edit entries in a keytab. (Kerberos V4 srvtab files are no longer supported.)
COMMANDS¶
list¶
Displays the current keylist. If -t, -k, and/or -e are specified, also display the timestamp, key contents, or enctype (respectively).
Alias: l
read_kt¶
Read the Kerberos V5 keytab file keytab into the current keylist.
Alias: rkt
write_kt¶
Write the current keylist into the Kerberos V5 keytab file keytab.
Alias: wkt
clear_list¶
Clear the current keylist.
Alias: clear
delete_entry¶
Delete the entry in slot number slot from the current keylist.
Alias: delent
add_entry¶
Add principal to keylist using key or password. If the -f flag is specified, salt information will be fetched from the KDC; in this case the -e flag may be omitted, or it may be supplied to force a particular enctype. If the -f flag is not specified, the -e flag must be specified, and the default salt will be used unless overridden with the -s option.
Alias: addent
list_requests¶
Displays a listing of available commands.
Aliases: lr, ?
quit¶
Quits ktutil.
Aliases: exit, q
EXAMPLE¶
ktutil: add_entry -password -p alice@BLEEP.COM -k 1 -e
aes128-cts-hmac-sha1-96 Password for alice@BLEEP.COM: ktutil: add_entry -password -p alice@BLEEP.COM -k 1 -e
aes256-cts-hmac-sha1-96 Password for alice@BLEEP.COM: ktutil: write_kt alice.keytab ktutil:
ENVIRONMENT¶
See kerberos(7) for a description of Kerberos environment variables.
REMARKS¶
Changes to the keytab are appended to the keytab file (i.e., the keytab file is never overwritten). To directly modify a keytab, save the changes to a temporary file and then overwrite the keytab file of interest.
- Example:
-
ktutil> rkt /etc/krb5.keytab (modifications to keytab) ktutil> wkt /tmp/krb5.newtab ktutil> q # mv /tmp/krb5.newtab /etc/krb5.keytab
SEE ALSO¶
AUTHOR¶
MIT
COPYRIGHT¶
1985-2024, MIT
1.21.3 |