Creating a New Kerberos Principal - Managing Kerberos and Other Authentication Services in Oracle® Solaris 11.2

Managing Kerberos and Other Authentication Services in Oracle^® Solaris 11.2

Exit Print View

» ...Documentation Home » Oracle Solaris 11.2 Information Library » Managing Kerberos and Other Authentication ... » Administering Kerberos Principals and Policies » Administering Kerberos Principals » Creating a New Kerberos Principal

Updated: August 2014

Managing Kerberos and Other Authentication Services in Oracle^® Solaris 11.2

Document Information

Using This Documentation

Chapter 1 Using Pluggable Authentication Modules

Chapter 2 About the Kerberos Service

Chapter 3 Planning for the Kerberos Service

Chapter 4 Configuring the Kerberos Service

Chapter 5 Administering Kerberos Principals and Policies

Ways to Administer Kerberos Principals and Policies

Automating the Creation of New Kerberos Principals

Administering Kerberos Principals

Viewing Kerberos Principals and Their Attributes

Creating a New Kerberos Principal

Modifying a Kerberos Principal

Deleting a Kerberos Principal

Duplicating a Kerberos Principal by Using the gkadmin GUI

Modifying Principals' Kerberos Administration Privileges

Administering Kerberos Policies

Administering Keytab Files

Adding a Kerberos Service Principal to a Keytab File

Removing a Service Principal From a Keytab File

Displaying the Principals in a Keytab File

Temporarily Disabling a Kerberos Service on a Host

How to Temporarily Disable Authentication for a Kerberos Service on a Host

Chapter 6 Using Kerberos Applications

Chapter 7 Kerberos Service Reference

Chapter 8 Kerberos Error Messages and Troubleshooting

Chapter 9 Using Simple Authentication and Security Layer

Chapter 10 Configuring Network Services Authentication

Appendix A DTrace Probes for Kerberos

Security Glossary

Language:

Creating a New Kerberos Principal

If a new principal requires a new policy, you must create the new policy before you create the principal. For policy creation, see Example 5–10. Most Kerberos policies specify password requirements.

Example 5-4 Creating a New Kerberos Principal

The following example creates a new principal called pak and sets the principal's policy to testuser. The other required values, such as encryption type, use default values.

# /usr/sbin/kadmin
kadmin: add_principal -policy testuser pak
Enter password for principal "[email protected]": xxxxxxxx
Re-enter password for principal "[email protected]": xxxxxxxx
Principal "[email protected]" created.
kadmin: quit

Typically, few users are privileged to administer the Kerberos database. If this new principal needs administrative privileges, continue with Modifying Principals' Kerberos Administration Privileges.

Copyright © 2002, 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices