Krb5.keytab
From InteropWiki
- Default location is /etc/krb5.keytab
- Readable by root only
Note that Windows 2000 doesn't generate KVNO (version numbers), so they will always be 0.
[edit]
Current Keytab
Generated by using the sudo net -U Michael ads join command.
michael@schurter3-Linux:~$ sudo klist -ke Keytab name: FILE:/etc/krb5.keytab KVNO Principal ---- -------------------------------------------------------------------------- 3 host/schurter3-linux.tremont.local@TREMONT.LOCAL (DES cbc mode with CRC-32) 3 host/schurter3-linux.tremont.local@TREMONT.LOCAL (DES cbc mode with RSA-MD5) 3 host/schurter3-linux.tremont.local@TREMONT.LOCAL (ArcFour with HMAC/md5) 3 host/schurter3-linux@TREMONT.LOCAL (DES cbc mode with CRC-32) 3 host/schurter3-linux@TREMONT.LOCAL (DES cbc mode with RSA-MD5) 3 host/schurter3-linux@TREMONT.LOCAL (ArcFour with HMAC/md5) 3 schurter3-linux$@TREMONT.LOCAL (DES cbc mode with CRC-32) 3 schurter3-linux$@TREMONT.LOCAL (DES cbc mode with RSA-MD5) 3 schurter3-linux$@TREMONT.LOCAL (ArcFour with HMAC/md5)
[edit]
Old Keytab
KVNO Principal ---- -------------------------------------------------------------------------- 1 host/schurter3-linux.tremont.local@TREMONT.LOCAL 0 host/schurter3-linux.tremont@TREMONT.LOCAL 0 host/schurter3-linux.tremont@TREMONT.LOCAL 0 host/schurter3-linux.tremont@TREMONT.LOCAL 0 host/schurter3-linux@TREMONT.LOCAL 0 host/schurter3-linux@TREMONT.LOCAL 0 host/schurter3-linux@TREMONT.LOCAL 0 schurter3-linux$@TREMONT.LOCAL 0 schurter3-linux$@TREMONT.LOCAL 0 schurter3-linux$@TREMONT.LOCAL
The first ticket was generated on a Windows 2000 server using the ktpass command. The rest were generated by Samba's net command.
