NAME

kstash - store the KDC master password in a file

SYNOPSIS

kstash type=string [-e string Xo --enc-] --key-file=file [-k file Xo] [--convert-file] [--random-key] [--master-key-fd=fd] [--random-key] [-h | --help] [--version]

DESCRIPTION

kstash reads the Kerberos master key and stores it in a file that will be used by the KDC.

Supported options:

Xo
-e string, --enctype=string the encryption type to use, defaults to DES3-CBC-SHA1.

Xo
-k file, --key-file=file the name of the master key file.

Xo
--convert-file don't ask for a new master key, just read an old master key file, and write it back in the new keyfile format.

Xo
--random-key generate a random master key.

Xo
--master-key-fd=fd filedescriptor to read passphrase from, if not specified the passphrase will be read from the terminal.

FILES

/var/heimdal/m-key is the default keyfile if no other keyfile is specified. The format of a Heimdal master key is the same as a keytab, so ktutil list can be used to list the content of the file.

SEE ALSO

kdc(8)