kadmin keytab?

Russ Allbery rra at stanford.edu
Fri Jan 5 16:19:09 EST 2007


Jeff Blaine <jblaine at kickflop.net> writes:

> "The kadmind keytab is the key that the legacy admininstration daemons
> kadmind4 and v5passwdd will use to decrypt administrators' or clients'
> Kerberos tickets to determine whether or not they should have access to
> the database."

> This is listed as an optional step to support legacy daemons.  How does
> one determine if they need to perform this step and bother with it?

You almost certainly don't have to care.  kadmind4 and v5passwdd were
removed in the 1.4 release and this is probably just a missing
documentation update from that removal.  They're only interesting if you
have legacy K4 kadmin clients or need to support a different password
changing interface than the one implemented by kpasswd.

-- 
Russ Allbery (rra at stanford.edu)             <http://www.eyrie.org/~eagle/>



More information about the Kerberos mailing list