Next: , Previous: The include Directory, Up: Organization of the Source Directory

3.1.5 The kadmin Directory

In this directory is the code for the utilities kadmin, kadmin.local, kdb5_util, and ktutil. ktutil is the Kerberos keytab file maintenance utility from which a Kerberos administrator can read, write, or edit entries in a Kerberos V5 keytab or Kerberos V4 srvtab. kadmin and kadmin.local are command-line interfaces to the Kerberos V5 KADM5 administration system. kadmin.local runs on the master KDC and does not use Kerberos to authenticate to the database, while kadmin uses Kerberos authentication and an encrypted RPC. The two provide identical functionalities, which allow administrators to modify the database of Kerberos principals. kdb5_util allows administrators to perform low-level maintenance procedures on Kerberos and the KADM5 database. With this utility, databases can be created, destroyed, or dumped to and loaded from ASCII files. It can also be used to create master key stash files.