Name
list — List entries in keylist
Synopsis
list [-e] [-t] [-k]
Aliases
l
The list command
displays the principals whose keys are stored in the keylist. By
default, the list command will
dump the key version number and the principal of each entry in the
keylist, along with a numerical identifier referred to as the
“slot” that can be used as input to the delete command to uniquely identify a
particular entry.
Each of the optional arguments adds additional information
to the keylist display. The -e
argument also dumps the encryption type of every entry in the
keylist. The -t argument dumps
the timestamp of when the key was added into the keytab, and the
-k argument dumps the
hexadecimal encryption key itself.
Example
ktutil: l -e slot KVNO Principal ---- ---- -------------------------------------------------------------------- 1 3 host/freebsd.wedgie.org@WEDGIE.ORG (Triple DES cbc mode with HMAC/sha1) 2 3 host/freebsd.wedgie.org@WEDGIE.ORG (DES cbc mode with CRC-32) 3 3 ldap/freebsd.wedgie.org@WEDGIE.ORG (Triple DES cbc mode with HMAC/sha1) 4 3 ldap/freebsd.wedgie.org@WEDGIE.ORG (DES cbc mode with CRC-32)
Get Kerberos: The Definitive Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
