diff options
author | Simo Sorce <simo@redhat.com> | 2013-09-23 15:48:58 -0400 |
---|---|---|
committer | Simo Sorce <simo@redhat.com> | 2014-06-09 14:53:56 -0400 |
commit | 2c58b9f626e0f93ac76d76c83fd53a427c89dae5 (patch) | |
tree | 62bf476339c3fc1f6044af57864a429bc9078102 | |
parent | 63f7aa46f2e1d0f4dec7951cc1684f555fb77d39 (diff) | |
download | freeipa-getkeytab.tar.gz freeipa-getkeytab.tar.xz freeipa-getkeytab.zip |
man: Add -r option to ipa-getkeytab.1getkeytab
Update the man page with the new ipa-getkeytab option.
-rw-r--r-- | ipa-client/man/ipa-getkeytab.1 | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/ipa-client/man/ipa-getkeytab.1 b/ipa-client/man/ipa-getkeytab.1 index ce62d9d09..bb84ad8f2 100644 --- a/ipa-client/man/ipa-getkeytab.1 +++ b/ipa-client/man/ipa-getkeytab.1 @@ -21,7 +21,7 @@ .SH "NAME" ipa\-getkeytab \- Get a keytab for a Kerberos principal .SH "SYNOPSIS" -ipa\-getkeytab \fB\-s\fR \fIipaserver\fR \fB\-p\fR \fIprincipal\-name\fR \fB\-k\fR \fIkeytab\-file\fR [ \fB\-e\fR encryption\-types ] [ \fB\-q\fR ] [ \fB\-D\fR|\fB\-\-binddn\fR \fIBINDDN\fR ] [ \fB\-w|\-\-bindpw\fR ] [ \fB\-P\fR|\fB\-\-password\fR \fIPASSWORD\fR ] +ipa\-getkeytab \fB\-s\fR \fIipaserver\fR \fB\-p\fR \fIprincipal\-name\fR \fB\-k\fR \fIkeytab\-file\fR [ \fB\-e\fR encryption\-types ] [ \fB\-q\fR ] [ \fB\-D\fR|\fB\-\-binddn\fR \fIBINDDN\fR ] [ \fB\-w|\-\-bindpw\fR ] [ \fB\-P\fR|\fB\-\-password\fR \fIPASSWORD\fR ] [ \fB\-r\fR ] .SH "DESCRIPTION" Retrieves a Kerberos \fIkeytab\fR. @@ -95,6 +95,12 @@ The LDAP DN to bind as when retrieving a keytab without Kerberos credentials. Ge .TP \fB\-w, \-\-bindpw\fR The LDAP password to use when not binding with Kerberos. +.TP +\fB\-r\fR +Retrieve mode. Retrieve an existing key from the server instead of generating a +new one. This is incompatibile with the \-\-password option, and will work only +against a FreeIPA server more recent than version 3.3. The user requesting the +keytab must have access to the keys for this operation to succeed. .SH "EXAMPLES" Add and retrieve a keytab for the NFS service principal on the host foo.example.com and save it in the file /tmp/nfs.keytab and retrieve just the des\-cbc\-crc key. |