LinuxCommandLibrary

kerberos

network authentication protocol

TLDR

Get ticket

$ kinit [principal]
copy
List tickets
$ klist
copy
Destroy tickets
$ kdestroy
copy
Change password
$ kpasswd
copy
Forward ticket
$ kinit -f [principal]
copy
Renew ticket
$ kinit -R
copy

SYNOPSIS

Kerberos commands: kinit, klist, kdestroy, kpasswd

DESCRIPTION

Kerberos is a network authentication protocol. It uses tickets to authenticate users and services.
The protocol provides single sign-on across networked services. Common commands include kinit, klist, and kdestroy.

PARAMETERS

kinit PRINCIPAL

Get Kerberos ticket.
klist
List cached tickets.
kdestroy
Destroy tickets.
kpasswd
Change Kerberos password.
-f
Get forwardable ticket.
-R
Renew existing ticket.
-l LIFETIME
Ticket lifetime.

CAVEATS

Requires KDC infrastructure. Time synchronization critical. Network configuration needed.

HISTORY

Kerberos was developed at MIT as part of Project Athena. Version 5 is the current standard.

SEE ALSO

kinit(1), klist(1), kdestroy(1), kpasswd(1)

> TERMINAL_GEAR

Curated for the Linux community

Copied to clipboard

> TERMINAL_GEAR

Curated for the Linux community