Print

Importing the keytab file on the AE Server

About this task

This procedure is performed by an administrator on the AE Server.

After you configure the /etc/krb5.conf file, you must import the keytab file that was generated on the Windows Domain Controller (see Generating a keytab file for the AE Server account on the Domain Controller) to the AE Server.

Procedure

  1. Log in as root or sroot.
  2. From the command line, type /usr/kerberos/sbin/ktutil.
  3. From the ktui prompt, type the following command to have the ktuility read in the keytab file.

    rkt aeserver.keytab

    The ktutility reads in the keytab file, and upon completion, displays the ktutil prompt.

  4. Type the following command to merge the imported key into the /etc/krb5.keytab file.

    wkt /etc/krb5.keytab

  5. Type q to exit ktutil.
  6. From the command prompt, type kinit.

    This utility will obtain and cache the Kerberos ticket-granting ticket from the Domain Controller.

Next Steps

Continue with the next procedure Changing from User Management Authentication to Active Directory Authentication on the AE Server.