[32744] in Kerberos
Re: Copying keys from one KDC to another?
daemon@ATHENA.MIT.EDU (Greg Hudson)
Thu Sep 30 10:51:04 2010
From: Greg Hudson <ghudson@mit.edu>
To: Brian Candler <B.Candler@pobox.com>
In-Reply-To: <20100930142409.GB3342@talktalkplc.com>
Date: Thu, 30 Sep 2010 10:50:56 -0400
Message-ID: <1285858256.20521.1052.camel@ray>
Mime-Version: 1.0
Cc: "kerberos@mit.edu" <kerberos@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On Thu, 2010-09-30 at 10:24 -0400, Brian Candler wrote:
> Ideally I would have generated a random password on one box (e.g.
> addprinc -randkey) and then copied it to the other, and I wondered if there
> is a straightforward way to do this.
I'm not personally aware of a straightforward way to do this in MIT
krb5.
I think the necessary protocol features exist in kadmin; all that's
needed is a kadmin command to push the contents of a keytab to a
principal using the setkey RPC.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
