On 06/28/2016 09:58 AM, Diogenes S. Jesus wrote:
> That said, what's the role of the stash file in this scenario? To decrypt
> krbPrincipalKey LDAP attribute?
Yes. Keys in an LDAP KDB are encrypted in the master key just like keys
in a DB2 KDB. The idea is that if the Kerberos data in the LDAP
d
Hi everyone.
I'm currently struggling to make krb5kdc start without a stash file - and
no prompt.
As I understood[1] the stash file stores the encrypted master key. This
file is used to automate the start up of KDC to decrypt the local (as in
on-disk) krb database. However the definition is not r
