Storing Master Key in LDAP

Greg Hudson ghudson at MIT.EDU
Wed Jan 29 12:40:45 EST 2014

On 01/29/2014 06:30 AM, Rachit Raj wrote:
> The LDAP schema for Kerberos has attribute krbmkey to store master key. I
> could not find any way to store master key into this attribute. Is their
> any way to migrate master key from stash file to LDAP?

We don't use that schema attribute; it may be there for Novell
eDirectory or it may not be used by anything.  Storing the master key in
LDAP would seem to defeat the purpose of having a master key at all.

More information about the krbdev mailing list