diff options
Diffstat (limited to 'src/admin/create')
| -rw-r--r-- | src/admin/create/kdb5_create.M | 75 |
1 files changed, 75 insertions, 0 deletions
diff --git a/src/admin/create/kdb5_create.M b/src/admin/create/kdb5_create.M new file mode 100644 index 000000000..2e6c069da --- /dev/null +++ b/src/admin/create/kdb5_create.M @@ -0,0 +1,75 @@ +.\" $Source$ +.\" $Author$ +.\" $Id$ +.\" Copyright 1990 by the Massachusetts Institute of Technology. +.\" +.\" For copying and distribution information, please see the file +.\" <krb5/copyright.h>. +.\" +.TH KDB5_CREATE 8 "Kerberos Version 5.0" "MIT Project Athena" +.SH NAME +kdb5_create \- create a new Kerberos V5 principal database +.SH SYNOPSIS +.B kdb5_create +[ +.B \-r +.I realm +] [ +.B \-d +.I dbname +] [ +.B \-k +.I keytype +] [ +.B \-M +.I mkeyname +] [ +.B \-e +.I enctype +] +.br +.SH DESCRIPTION +.I kdb5_create +is used to create a Kerberos version 5 principal database. +The user is prompted for the master password, which will be used to +generate an encryption key under which all entries are stored (in order +to provide some security against database theft). +.PP +The +.B \-r +.I realm +option specifies the realm for which the database should be created; +by default the realm returned by +.IR krb5_default_local_realm (3) +is used. +.PP +The +.B \-d +.I dbname +option specifies the name under which the principal database is to be +created; by default the database is in DEFAULT_DBM_FILE (normally +/krb5/principal). +.PP +The +.B \-k +.I keytype +option specifies the key type (as an ascii representation of a decimal +number) of the master key in the database; the default is KEYTYPE_DES. +.PP +The +.B \-M +.I mkeyname +option specifies the principal name for the master key in the database; +the default is KRB5_KDB_M_NAME (usually "K/M" in the KDC's realm). +.PP +The +.B \-e +.I enctype +option specifies the encryption type (as an ascii representation of a decimal +number) to be used when placing entries in +the database; the default is the default encryption type for the master +keytype. +.SH SEE ALSO +krb5(3), krb5kdc(8) +.SH BUGS +Doesn't have flexibility about expiration times. |