Linux-UNIX: Merging keytab files

If you have multiple keytab files (for multiple databases on one host), you can merge the keys. After combining the keytabs, configure the Kerberos plugin to point to the one new combined keytab. Each database comtinues to use its own individual keytab, not the combined one.

Procedure

  1. Open the MIT Kerberos ktutil on your database server.
  2. Write the 3 keytabs (filename 1, 2, 3) into the Kerberos V5 keytab file keytab, by entering, for example:
    > ktutil
     ktutil: read_kt <filename 1>
     ktutil: read_kt <filename 2>
     ktutil: read_kt <filename 3>
     ktutil: write_kt krb5.keytab
     ktutil: quit
  3. Configure the Kerberos plugin to point to the one new combined keytab, in this example, keytab.