[31385] in Kerberos
Re: ktadd then principal's password no longer works?
daemon@ATHENA.MIT.EDU (Douglas E. Engert)
Fri Aug 14 16:42:56 2009
X-Barracuda-Envelope-From: deengert@anl.gov
Message-ID: <4A85CC20.3030302@anl.gov>
Date: Fri, 14 Aug 2009 15:42:08 -0500
From: "Douglas E. Engert" <deengert@anl.gov>
MIME-Version: 1.0
To: Greg Hudson <ghudson@mit.edu>
In-Reply-To: <1250281990.6898.27.camel@ray>
Cc: Jeff Blaine <jblaine@kickflop.net>, "kerberos@mit.edu" <kerberos@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
If your goal was to have a admin.kt to run script from cron,
maybe the best choice it to create a cronadmin/admin
and give it admin privilages.
Then create its keytab using ktadd. Yoiu can then change it
as needed, and still have you admin/admin.
Greg Hudson wrote:
> On Fri, 2009-08-14 at 14:18 -0400, Jeff Blaine wrote:
>>> If so look at the ktutil addent
>>> It does not have to change the KDC database.
>
>> Thank you. That works as I wanted. I probably knew this
>> at some point but forgot.
>
> A small caveat: ktutil addent doesn't contact the KDC and thus doesn't
> find out if the principal uses a non-default salt.
>
>
>
--
Douglas E. Engert <DEEngert@anl.gov>
Argonne National Laboratory
9700 South Cass Avenue
Argonne, Illinois 60439
(630) 252-5444
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
