[Samba] Generating keytabs for other hosts
steve
steve at steve-ss.com
Tue Jan 21 10:58:28 MST 2014
On Tue, 2014-01-21 at 12:22 -0500, Pat Suwalski wrote:
> On 14-01-21 10:16 AM, steve wrote:
> > Create spns and keytabs on the DC:
> >
> > samba-tool spn add --help
> > samba-tool domain exportkeytab --help
>
> The format for "samba-tool spn add" takes "name" and "user" as parameters.
>
> When one uses "net join", what "user" is used?
Anyone in Domain Admins will do.
e.g.
net ads join -UAdministrator
>
> Basically, how can I simulate the "net join" command to create a keytab
> without actually joining the domain?
Not sure what you are trying to do but:
samba-tool spn add host/client Administrator
samba-tool domain exportkeytab your.keytab --principal=host/client
would get the host principal into a keytab.
HTH
Steve
More information about the samba
mailing list