cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
vemurikarthik
Calcite | Level 5 vemurikarthik
Calcite | Level 5

Setting up host principal in KDC

Posted 01-16-2020 10:13 AM (579 views)

Hi All,

 

I was trying to add a host principal in KDC (below is the SAS link I am following) and the command doesn't seem to recognize "ok_to_delegate". I have less knowledge in kerberos mechanism. Could you advise if ok_as_delegate can be used instead?

 

https://documentation.sas.com/?docsetId=hpaicg&docsetTarget=n02024sashpanalytics0install.htm&docsetV...

 

 

[root@xxxxx~]# kadmin -q "addprinc –randkey +ok_to_delegate host/xxxxx.ic.xxxx.net"
Authenticating as principal root/admin@karthikhdp.IC.xxxx.NET with password.
Password for root/admin@karthikhdp.IC.xxxx.NET:
usage: add_principal [options] principal
options are:
[-randkey|-nokey] [-x db_princ_args]* [-expire expdate] [-pwexpire pwexpdate] [-maxlife maxtixlife]
[-kvno kvno] [-policy policy] [-clearpolicy]
[-pw password] [-maxrenewlife maxrenewlife]
[-e keysaltlist]
[{+|-}attribute]
attributes are:
allow_postdated allow_forwardable allow_tgs_req allow_renewable
allow_proxiable allow_dup_skey allow_tix requires_preauth
requires_hwauth needchange allow_svr password_changing_service
ok_as_delegate ok_to_auth_as_delegate no_auth_data_required
lockdown_keys

where,
[-x db_princ_args]* - any number of database specific arguments.
Look at each database documentation for supported arguments

0 Likes
Reply
1 REPLY 1
AnandVyas
Ammonite | Level 13 AnandVyas
Ammonite | Level 13

Re: Setting up host principal in KDC

Posted 01-16-2020 09:30 PM (540 views)  |   In reply to vemurikarthik
I think it should be ok_as_delegate. Here the link to list of commands - https://web.mit.edu/kerberos/krb5-1.12/doc/admin/admin_commands/kadmin_local.html
0 Likes
Reply

suga badge.PNGThe SAS Users Group for Administrators (SUGA) is open to all SAS administrators and architects who install, update, manage or maintain a SAS deployment. 

Join SUGA 

Get Started with SAS Information Catalog in SAS Viya

SAS technical trainer Erin Winters shows you how to explore assets, create new data discovery agents, schedule data discovery agents, and much more.

Watch Get Started with SAS Information Catalog in SAS Viya on YouTube

Find more tutorials on the SAS Users YouTube channel.

Discussion stats
  • 1 reply
  • ‎01-16-2020 10:13 AM
  • 580 views
  • 0 likes
  • 2 in conversation