[36441] in Kerberos
Re: Creating KDC database in a non-interactive script?
daemon@ATHENA.MIT.EDU (Greg Hudson)
Wed Sep 10 10:25:25 2014
Message-ID: <54105F4B.1080909@mit.edu>
Date: Wed, 10 Sep 2014 10:25:15 -0400
From: Greg Hudson <ghudson@mit.edu>
MIME-Version: 1.0
To: Robert Levas <rlevas@hortonworks.com>, kerberos@mit.edu
In-Reply-To: <CAO-2dX6MYGGq1uOozXd72awMpWE0S72U7dsF8_ZQJ3HrniGSSQ@mail.gmail.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On 09/10/2014 09:59 AM, Robert Levas wrote:
> It is possible to create the KDC database from an non-interactive (Linux,
> for now) script? I am trying to automate the installation of a KDC and am
> failing to get past the database creation phase since kdb5_util create [-s]
> appears to not have an option to supply the master password on the command
> line.
It's the -P option. It's documented in the man page but apparently not
in the usage message; I will submit a fix.
Be aware that using the -P option can leak the master password to other
users on the host via the process list.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
