[27176] in Kerberos
Re: kadmin keytab?
daemon@ATHENA.MIT.EDU (Russ Allbery)
Fri Jan 5 16:19:46 2007
From: Russ Allbery <rra@stanford.edu>
To: Jeff Blaine <jblaine@kickflop.net>
In-Reply-To: <459EAE3C.5040402@kickflop.net> (Jeff Blaine's message of "Fri,
05 Jan 2007 14:59:56 -0500")
Date: Fri, 05 Jan 2007 13:19:09 -0800
Message-ID: <87d55t41f6.fsf@windlord.stanford.edu>
MIME-Version: 1.0
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Jeff Blaine <jblaine@kickflop.net> writes:
> "The kadmind keytab is the key that the legacy admininstration daemons
> kadmind4 and v5passwdd will use to decrypt administrators' or clients'
> Kerberos tickets to determine whether or not they should have access to
> the database."
> This is listed as an optional step to support legacy daemons. How does
> one determine if they need to perform this step and bother with it?
You almost certainly don't have to care. kadmind4 and v5passwdd were
removed in the 1.4 release and this is probably just a missing
documentation update from that removal. They're only interesting if you
have legacy K4 kadmin clients or need to support a different password
changing interface than the one implemented by kpasswd.
--
Russ Allbery (rra@stanford.edu) <http://www.eyrie.org/~eagle/>
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
