ksetup
The Qshell command ksetup manages Kerberos service entries in the directory server for a Kerberos realm.
Syntax
ksetup -h host-name -n bind-name -p bind-password -e
Default public authority: *USE
Options
- -h
- The host name for the directory server. If you do not specify this option, the directory server specified in the Kerberos configuration file is used.
- -n
- The distinguished name to use when you bind to the directory server. If you do not specify this option, the LDAP_BINDDN environment variable is used to obtain the name.
- -p
- The password to use when you bind to the directory server. If this option is not specified, the LDAP_BINDPW environment variable is used to obtain the password.
- -e
- Echo each command line to stdout. This is useful when stdin is redirected to a file.
Authorities
| Object referred to | Authority required |
|---|---|
| Each directory in the paths to the configuration files | *X |
| Configuration files | *R |
Messages
- subcommand is not a valid subcommand.
- Valid subcommands are addhost, addkdc, delhost, delkdc, listhost, listkdc, exit.
- command_option_one and command_option_two cannot be specified together.
- Unable to initialize LDAP client.
- Unable to bind to directory server.
- Realm name must be specified.
- Host name must be specified.
- Too many positional parameters.
- Host host already exists.
- Root domain domain is not defined.
- Realm name realm is not valid.
- The LDAP function name function detects an error.
- Insufficient storage available.
- Host name host is not valid.
- Port number port is not valid.
- Host host is not defined.
- No Kerberos server defined for host host.
- Unable to obtain default realm name.
For an example of how this command is used, see Managing Kerberos service entries in LDAP directories.