Man1 - ktutil.1

Table of Contents

Home DTOS Other Projects Knowledge Base Linux Manpages Community Contribute

NAME

ktutil - Kerberos keytab file maintenance utility

SYNOPSIS

ktutil

DESCRIPTION

The ktutil command invokes a command interface from which an administrator can read, write, or edit entries in a keytab. (Kerberos V4 srvtab files are no longer supported.)

COMMANDS

list

#+begin_quote list [*-t*] [*-k*] [*-e*]

#+end_quote

Displays the current keylist. If -t, -k, and/or -e are specified, also display the timestamp, key contents, or enctype (respectively).

Alias: l

read_kt

#+begin_quote read_kt keytab

#+end_quote

Read the Kerberos V5 keytab file keytab into the current keylist.

Alias: rkt

write_kt

#+begin_quote write_kt keytab

#+end_quote

Write the current keylist into the Kerberos V5 keytab file keytab.

Alias: wkt

clear_list

#+begin_quote clear_list

#+end_quote

Clear the current keylist.

Alias: clear

delete_entry

#+begin_quote delete_entry slot

#+end_quote

Delete the entry in slot number slot from the current keylist.

Alias: delent

add_entry

#+begin_quote add_entry {-key*|-password*} -p principal -k kvno [*-e* /enctype/] [*-f*|*-s* /salt/]

#+end_quote

Add principal to keylist using key or password. If the -f flag is specified, salt information will be fetched from the KDC; in this case the -e flag may be omitted, or it may be supplied to force a particular enctype. If the -f flag is not specified, the -e flag must be specified, and the default salt will be used unless overridden with the -s option.

Alias: addent

list_requests

#+begin_quote list_requests

#+end_quote

Displays a listing of available commands.

Aliases: lr, ?

quit

#+begin_quote quit

#+end_quote

Quits ktutil.

Aliases: exit, q

EXAMPLE

#+begin_quote

#+begin_quote

#+begin_quote 

          ktutil:  add_entry -password -p alice@BLEEP.COM -k 1 -e
              aes128-cts-hmac-sha1-96
          Password for alice@BLEEP.COM:
          ktutil:  add_entry -password -p alice@BLEEP.COM -k 1 -e
              aes256-cts-hmac-sha1-96
          Password for alice@BLEEP.COM:
          ktutil:  write_kt keytab
          ktutil:

#+end_quote #+end_quote #+end_quote

ENVIRONMENT

See kerberos(7) for a description of Kerberos environment variables.

SEE ALSO

kadmin(1), kdb5_util(8), kerberos(7)

AUTHOR

MIT

COPYRIGHT

1985-2021, MIT

Author: dt

Created: 2022-02-22 Tue 16:20