I'm trying to come up with the simplest system check (as part of a test suite) for krb5 authentication being set up right on a box. I want to actually test the service, not examine config files for validity. Any ideas past "distribute a "test" keytab with the test suite?"