KDB_EDIT

Section: Maintenance Commands (8)
Updated: Kerberos Version 4.0
Index Return to Main Contents
 

NAME

kdb_edit - Kerberos key distribution center database editing utility  

SYNOPSIS

kdb_edit [ -n ]  

DESCRIPTION

kdb_edit is used to create or change principals stored in the Kerberos key distribution center (KDC) database.

When executed, kdb_edit prompts for the master key string and verifies that it matches the master key stored in the database. If the -n option is specified, the master key is instead fetched from the master key cache file.

Once the master key has been verified, kdb_edit begins a prompt loop. The user is prompted for the principal and instance to be modified. If the entry is not found the user may create it. Once an entry is found or created, the user may set the password, expiration date, maximum ticket lifetime, and attributes. Default expiration dates, maximum ticket lifetimes, and attributes are presented in brackets; if the user presses return the default is selected. There is no default password. The password RANDOM is interpreted specially, and if entered the user may have the program select a random DES key for the principal.

Upon successfully creating or changing the entry, ``Edit O.K.'' is printed.  

DIAGNOSTICS

"verify_master_key: Invalid master key, does not match database."
The master key string entered was incorrect.
 

FILES

/etc/kerberosIV/principal.pag, /etc/kerberosIV/principal.dir
DBM files containing database
/etc/kerberosIV/master_key
Master key cache file.


 

Index

NAME
SYNOPSIS
DESCRIPTION
DIAGNOSTICS
FILES

This document was created by man2html, using the manual pages.
Time: 06:39:55 GMT, May 19, 2025