search
githubEdit

Kerberos Keytabs

hashtag
KEYTABS CREATION

hashtag
Location: /etc/security/keytabs

hashtag
Keytabs can be generated by interfacing with the Kerberos server and executing the following command:

ktpass /pass <Krb Password> /mapuser <Krb Username> /out <ex.keytab> /princ <username>/<hostname>@<example.com> /ptype KRB5_NT_PRINCIPAL /crypto RC4-HMAC-NT /Target example.

hashtag
HOW TO USE:

1) List Principal Names

klist -k ACCOUNT.SERVICE.KEYTAB

2) Use the keytab, authenticate to the kerberos server and request a ticket

kinit PRINCIPAL NAME -k -V -t ACCOUNT.SERVICE.KEYTAB
PreviousHadoopNextExploit Development

Last updated