man kdb_edit (Administration système) - kdb_edit
NAME
SYNOPSIS
DESCRIPTION
is used to create or change principals stored in the Kerberos key distribution center (KDC) database.
When executed, prompts for the master key string and verifies that it matches the master key stored in the database. If the -n option is specified, the master key is instead fetched from the master key cache file.
Once the master key has been verified, begins a prompt loop. The user is prompted for the principal and instance to be modified. If the entry is not found the user may create it. Once an entry is found or created, the user may set the password, expiration date, maximum ticket lifetime, and attributes. Default expiration dates, maximum ticket lifetimes, and attributes are presented in brackets; if the user presses return the default is selected. There is no default password. The password RANDOM is interpreted specially, and if entered the user may have the program select a random DES key for the principal.
Upon successfully creating or changing the entry, ``Edit O.K.'' is printed.
DIAGNOSTICS
- verify_master_key: Invalid master key, does not match database.
- The master key string entered was incorrect.
FILES
- /var/kerberos/principal.pag Ns No , /var/kerberos/principal.dir
- DBM files containing database
- /.k
- Master key cache file.