Manualshelf

OSF DCE Administration Guide--Core Components

ManualsBrandsHP ManualsServerHP NonStop G-Series
411412413414415416417418419420
OSF DCE Administration Guide—Core Components
TABLE 31-2. The keytab create and keytab add Options
__________________________________________________________________
Option Meaning
__________________________________________________________________
__________________________________________________________________
This option allows you to access the keytab file
without using dced.
-local
__________________________________________________________________
This option allows you to specify that the
protection level to be used should be the default
protection level for your site instead of
rpc_c_protect_level_pkt_privacy.
-noprivacy
__________________________________________________________________
The name of the principal (server or machine)
whose key you are creating or changing. You can
supply multiple names in a list. If you supply a
list, all principals named in the list are assigned
the same key.
-member name
__________________________________________________________________
The plain text key to the account. This option
cannot be used with the -random option.
-key key
__________________________________________________________________
This option generates a random key. If you use
this option, you must also use the -registry
option to add the randomly generated key to the
server’s or machine’s account in the registry.
This option cannot be used with the -key option.
-random
__________________________________________________________________
This option updates the principal’s key in the
registry to match the key that you enter (or
generate automatically) for the key in the keytab
file. Use it to ensure that the principal’s key in
the registry and the keytab file are synchronized
when you change a principal’s key in the keytab
file.
-registry
__________________________________________________________________
__________________________________________________________________
You must use this option if you use the -random
option. To use this option, you may need to run
the dcecp login command to ensure that your
network identity is appropriate for modifying the
registry database.
__________________________________________________________________
This option specifies a version number for the
key. It is required if you do not use the -registry
option.
-version number
__________________________________________________________________
The pathname of the local file to be created. This
option is used only for the keytab create
command. When you add entries to an existing
keytab file, you identify the file by its dced object
name.
-storage local_file_name
__________________________________________________________________
The server principal name and keys in the format
principal_name key_type { version}{key_value}
-data keys
__________________________________________________________________
31 16 Tandem Computers Incorporated 124243