Chapter 38. Kerberos Keytab configuration mode
This chapter provides an alphabetic listing of commands that are available in
Kerberos Keytab configuration mode.
To enter this configuration mode, use the Crypto kerberos-keytab command.
All of the commands that are listed in "Common commands" on page 2 and most,
but not all, of the commands that are listed in Chapter 114, "Monitoring
commands," on page 949 are also available in this configuration mode.
filename
Specifies the file that contains the Kerberos keytab, a file that contains keys used to
decrypt Kerberos tickets.
Syntax
filename URL
Parameters
URL
Guidelines
The filename command specifies the location of the keytab file. The keytab file is
Kerberos-generated and must be uploaded to the cert: directory on the appliance.
Examples
v Identifies the KKTab keytab file in the cert: directory.
use-replay-cache
Controls the caching of Kerberos authenticators on tickets for Kerberos principals
in this keytab.
Syntax
use-replay-cache {on | off}
Parameters
on
off
Examples
v Disables the authenticators cache.
© Copyright IBM Corp. 1999, 2008
Identities the fully qualified name of the keytab file in the cert: directory.
# filename cert:///KKTab
#
(Default) Enables caching of Kerberos authenticators.
Disables caching of Kerberos authenticators.
# use-replay-cache off
#
377