Difference between revisions of "Linux Kerberos"

From Ever changing code
Jump to navigation Jump to search
(Created page with "= Install = = Operations = == Obtain a ticket == $ kinit user1@DOMAIN.LOCAL == Use keytab file == This creates secure a file containing credentials. Default keytab file is...")
 
Line 23: Line 23:
Obtain a ticket
Obtain a ticket
  kinit ppawl@TPPLC.LOCAL -k -t ~/.ssh/user1.keytab
  kinit ppawl@TPPLC.LOCAL -k -t ~/.ssh/user1.keytab
== Destroy any current kerberos tickets ==
$ kdestroy

Revision as of 09:09, 10 January 2018

Install

Operations

Obtain a ticket

$ kinit user1@DOMAIN.LOCAL

Use keytab file

This creates secure a file containing credentials. Default keytab file is /etc/krb5.keytab 

$ ktutil
ktutil:  addent -password -p user1@DOMAIN.LOCAL -k 1 -e aes256-cts
Password for user1@DOMAIN.LOCAL: *********
ktutil:  wkt user1.keytab
ktutil:  quit

List credentials 

$ klist -k user1.keytab
Keytab name: FILE:ppawl.keytab
KVNO Principal
---- --------------------------------------------------------------------------
   1 user1@DOMAIN.LOCAL

Obtain a ticket 

kinit ppawl@TPPLC.LOCAL -k -t ~/.ssh/user1.keytab

Destroy any current kerberos tickets

$ kdestroy
Retrieved from ‘http://wiki.ciscolinux.co.uk/index.php?title=Linux_Kerberos&oldid=2580