KDB_UTIL
Section: Maintenance Commands (8)
Updated: Kerberos Version 4.0
Index
Return to Main Contents
NAME
kdb_util - Kerberos key distribution center database utility
SYNOPSIS
kdb_util
operation filename
DESCRIPTION
kdb_util
allows the Kerberos key distribution center (KDC) database administrator to
perform utility functions on the database.
Operation
must be one of the following:
- load
-
initializes the KDC database with the records described by the
text contained in the file
filename.
Any existing database is overwritten.
- dump
-
dumps the KDC database into a text representation in the file
filename.
- slave_dump
-
performs a database dump like the
dump
operation, and additionally creates a semaphore file signalling the
propagation software that an update is available for distribution to
slave KDC databases.
- new_master_key
-
prompts for the old and new master key strings, and then dumps the KDC
database into a text representation in the file
filename.
The keys in the text representation are encrypted in the new master key.
- convert_old_db
-
prompts for the master key string, and then dumps the KDC database into
a text representation in the file
filename.
The existing database is assumed to be encrypted using the old format
(encrypted by the key schedule of the master key); the dumped database
is encrypted using the new format (encrypted directly with master key).
DIAGNOSTICS
- "verify_master_key: Invalid master key, does not match database."
-
The master key string entered was incorrect.
FILES
- /etc/kerberosIV/principal.pag, /etc/kerberosIV/principal.dir
-
DBM files containing database
- filename.ok
-
semaphore file created by
slave_dump.
Index
- NAME
-
- SYNOPSIS
-
- DESCRIPTION
-
- DIAGNOSTICS
-
- FILES
-
This document was created by
man2html,
using the manual pages.
Time: 06:39:55 GMT, May 19, 2025