NAME

krb5_admind - kerberos administration daemon

SYNOPSIS

krb5_admind [-MPv] [-D kdb] [-S sqlitedb] [-a acl_file] [-c conf_file] [-m master]

DESCRIPTION

krb5_admind is the daemon end of the kerberos administrative service. It expects to be spawned as an inetd-style service via knc(1).

krb5_admind when invoked will allow the client to create, fetch, change or remove keys. It uses a simple ACL logic, namely that host/ is entitled to perform requests for /. Some additional limitations on the target principal may be defined.

The options are as follows:

-D kdb: specifies the location of the Kerberos DB. Defaults to the location built into the Kerberos libriares.
-M: specifies that the master is the current host. Should be used only for setting up test servers.
-P: specifies that krb5_admind will run in preforked mode, that is krb5_admind will expect that fd 0 will be a listening socket and will serially accept and process incoming connexions.
-S sqlitedb: specifies the location of the sqlite3 adjunct database where krb5_admind stores its additional schemas.
-a acl_file: specifies the location of the ACL file. Defaults to /etc/krb5/krb5_admin.acl.
-c conf_file: specifies the location of the configuration file. Defaults to /etc/krb5/krb5_admind.conf.
-m master: specifies the hostname of the master KDC. If a KDC which is not the master is asked to perform a write operation it will deliver a redirect to the client which will break the connexion and reconnect to the master. Defaults to /etc/krb5/master.

Open Source Kerberos Tooling

Overview Source KNC Kharon krb5_admin krb5_keytab k5ping lnetd prefork	NAME krb5_admind - kerberos administration daemon SYNOPSIS krb5_admind [-MPv] [-D kdb] [-S sqlitedb] [-a acl_file] [-c conf_file] [-m master] DESCRIPTION krb5_admind is the daemon end of the kerberos administrative service. It expects to be spawned as an inetd-style service via knc(1). krb5_admind when invoked will allow the client to create, fetch, change or remove keys. It uses a simple ACL logic, namely that host/ is entitled to perform requests for /. Some additional limitations on the target principal may be defined. The options are as follows: -D kdb specifies the location of the Kerberos DB. Defaults to the location built into the Kerberos libriares. -M specifies that the master is the current host. Should be used only for setting up test servers. -P specifies that krb5_admind will run in preforked mode, that is krb5_admind will expect that fd 0 will be a listening socket and will serially accept and process incoming connexions. -S sqlitedb specifies the location of the sqlite3 adjunct database where krb5_admind stores its additional schemas. -a acl_file specifies the location of the ACL file. Defaults to `/etc/krb5/krb5_admin.acl`. -c conf_file specifies the location of the configuration file. Defaults to `/etc/krb5/krb5_admind.conf`. -m master specifies the hostname of the master KDC. If a KDC which is not the master is asked to perform a write operation it will deliver a redirect to the client which will break the connexion and reconnect to the master. Defaults to `/etc/krb5/master`. SEE ALSO knc(1), krb5_admind.conf(5), krb5_keytab(8). Last updated 2019-02-01 19:58:38 GMT

NAME

SYNOPSIS

DESCRIPTION

SEE ALSO