ktadd(ADMN)

ktadd -- add a service key to a service key table

Syntax

ktadd -p principal [ -pw password ] [ -f file ] [ -v version ]

ktadd adds a service key to a service key table.

The following options are supported:

-p principal: specify the principal to which the newly added key belongs. The principal name must be in canonical, fully qualified MIT Kerberos form (principal_name@realm_name). This argument is required.
-pw password: specify the key password to be converted to a key and placed in the key table. If this option is not specified, the user must enter the key password twice at non-echoing prompts.
-f file: specify an alternative file to use for the service key table. The default pathname for the file is /krb5/v5srvtab.
-v version: specify a version number. The default is the next unused version number in sequence.

Key version numbers are important. Note the following warnings:

Only use ktadd if the service or host principal is brand new (the service key must be version 1), or the version number is otherwise known.
Use only the kpasswd(TC) command to change or initialize the host key (this is because it automatically operates correctly on version numbers). Users may not be able to log in if the host service key is set to the wrong version number in the /krb5/v5srvtab file.

ktadd is not part of any currently supported standard. It is an extension of AT&T UNIX System V provided by The Santa Cruz Operation, Inc.

SCO OpenServer Release 5.0.6 -- 1 August 2000