krb5kdc(1M)

NAME

     krb5kdc - KDC daemon

SYNOPSIS

     /usr/lib/krb5kdc [-d dbpath] [-r realm] [-R replaycachename]
     [-m] [-k masterenctype] [-M masterkeyname] [-p port] [-n]

DESCRIPTION

     krb5kdc is the daemon that runs on the master and slave KDCs
     to  process  the  Kerberos tickets. For Kerberos to function
     properly, krb5kdc must be running on at least one  KDC  that
     the  Kerberos  clients can access. Prior to running krb5kdc,
     you   must   initialize   the   Kerberos   database    using
     kdb5_util(1M).  See the Solaris System Administration Guide,
     Security Services or instructions on  setting  up  KDCs  and
     initialize the Kerberos database.

OPTIONS

     The following options are supported:

     -d dbpath
           Specify the path to the  database;  default  value  is
           /var/krb5.

     -r realm
           Specify the realm name; default  is  the  local  realm
           name.

     -R replaycachename
           Specify  the  replay  cache  name;  default  value  is
           krb5kdc_rcache.

     -m    Specify that the master key for the database is to  be
           entered manually.

     -k masterenctype
           Specify the encryption type for encrypting  the  data-
           base. The default value is des-cbc-crc.

     -M masterkeyname
           Specify the principal to retrieve the master  key  for
           the database.

     -p port
           Specify the port that will  be  used  by  the  KDC  to
           listen for incoming requests.

     -n    Specify that krb5kdc should not detach from the termi-
           nal.

FILES

     /var/krb5/principal.db
           Kerberos principal database.

     /var/krb5/principal.kadm5
           Kerberos administrative database. This  file  contains
           policy information.

     /var/krb5/principal.kadm5.lock
           Kerberos administrative database lock file. This  file
           works  backwards  from most other lock files (that is,
           kadmin will exit with an error if this file  does  not
           exist).

     /etc/krb5/kdc.conf
           KDC configuration file. This file is read at startup.

     /etc/krb5/kpropd.acl
           File that defines the access  control  list  for  pro-
           pagating the Kerberos database using kprop.

ATTRIBUTES

     See attributes(5) for descriptions of the  following  attri-
     butes:

     ____________________________________________________________
    |       ATTRIBUTE TYPE        |       ATTRIBUTE VALUE       |
    |_____________________________|_____________________________|
    | Availability                | SUNWkdcu                    |
    |_____________________________|_____________________________|

SEE ALSO

     kpasswd(1),  gkadmin(1M),   kadmind(1M),   kadmin.local(1M),
     kdb5_util(1M),   kadm5.acl(4),  kdc.conf(4),  attributes(5),
     SEAM(5)

     Solaris System Administration Guide, Security Services
Man(1) output converted with man2html