NAME
kstash
- store the KDC master password in a file
SYNOPSIS
kstash
type=string
[-e string Xo --enc-]
--key-file=file
[-k file Xo]
[--convert-file]
[--random-key]
[--master-key-fd=fd]
[--random-key]
[-h | --help]
[--version]
DESCRIPTION
kstash
reads the Kerberos master key and stores it in a file that will be
used by the KDC.
Supported options:
- Xo
-
-e string,
--enctype=string
the encryption type to use, defaults to DES3-CBC-SHA1.
- Xo
-
-k file,
--key-file=file
the name of the master key file.
- Xo
-
--convert-file
don't ask for a new master key, just read an old master key file, and
write it back in the new keyfile format.
- Xo
-
--random-key
generate a random master key.
- Xo
-
--master-key-fd=fd
filedescriptor to read passphrase from, if not specified the
passphrase will be read from the terminal.
FILES
/var/heimdal/m-key
is the default keyfile if no other keyfile is specified.
The format of a Heimdal master key is the same as a keytab, so
ktutil
list can be used to list the content of the file.
SEE ALSO
kdc(8)