Mar 10, 2014  Instead you will have to log into a Linux system and create the keytab there and then securely transport the file back to your Macintosh where it will be stored as the file /etc/krb5.keytab (you can use the SSH file copy utility scp to accomplish this). On the Linux system, run this command. K -i -t keytabfile requests a ticket, obtained from a key in the local host's keytab. The location of the keytab may be specified with the -t keytabfile option, or with the -i option to specify the use of the default client keytab; otherwise the default keytab will be used. By default, a host ticket for the local host is requested, but. Apr 24, 2013  Now we got the magic krb5.keytab.proxy keyfile at least upload it via Webadmin at the bottom of this tab Web Security - HTTP/s - Advanced Now Login with the testuser on the 'client' mac via open directory and go to Systemeinstellungen - Netzwerk - Weitere Optionen - Proxies.

• Generate Keytab File Mac
• Generate Keytab File Windows

A keytab file extension is related to the Unix and Unix-like operating systems. A keytab file contains encrypted keys for Kerberos protocol.

Software that open keytab file

Bookmark & share this page with others:

KEYTAB file extension- Unix Kerberos encrypted key

What is keytab file? How to open keytab files?

The keytab file extension is associated with the Unix, Linux, Mac OS X (macOS) and other Unix-based operating systems.

The keytab file stores pairs of Kerberos principals and encrypted keys.

Kerberos is a computer network authentication protocol.

The default software associated to open keytab file:

Company or developer:
Apple, Inc.

macOS is Unix-based desktop operating system, a successor of Mac OS X system for MacBook-family, iMac, Mac Mini and Mac Pro computers, developed and sold by Apple, Inc.

Company or developer:
Various Linux developers

Linux is family of Unix-based operating systems. Linux kernel supports variety of devices such as desktop computers, smart phones, tablet computers, routers, video game consoles etc. Linux is also leading operating system for servers. Linux is available for free in many distributions on the Internet.

Popular distributions for desktops are Ubuntu, Fedora, openSUSE, Debian. For servers are variants of Red Hat, Xandros, Slackware, Debian, SUSE etc.

Operating system for smart phones called Android is also based on Linux. Nokia developed Linux based operating systems for smart phones called MeeGo and Maemo.

Company or developer:
The Open Group

A multi-tasking operating system for various platforms, the first version of UNIX was released in 1969. It is developed by AT&T as well as various commercial vendors, universities and non-profit organizations. Traditional Original Unix systems have characteristics of Version 7 Unix or UNIX System V. Unix Specification have Mac OS X, Mac OS X Server, Solaris, AIX, HP/UX, z/OS etc. Other systems, such as Linux and BSD are called Unix-like or Unix system-like.

Help how to open:

This file type is not meant to be opened directly, there is no software that could open and work with it directly, or there is no information available in public sources about opening this file type. This is usually the case of some internal data files, caches, temporary files etc.

How to convert:

As far as we know, this .keytab file type can't be converted to any other file format. This is usually the case of system, configuration, temporary, or data files containing data exclusive to only one software and used for its own purposes. Also some proprietary or closed file formats cannot be converted to more common file types in order to protect the intellectual property of the developer, which is for example the case of some DRM-protected multimedia files.

List of recommended software applications associated to the .keytab file extension

Recommended software programs are sorted by OS platform (Windows, macOS, Linux, iOS, Android etc.)
and possible program actions that can be done with the file: like open keytab file, edit keytab file, convert keytab file, view keytab file, play keytab file etc. (if exist software for corresponding action in File-Extensions.org's database).

Unspecified and all other actions for computer programs working with keytab file - Unix Kerberos encrypted key

Click on the software link(s) for more information. Suggested software applications use keytab file type for internal purposes and/or also by different way than common edit or open keytab file actions.

Apple macOS / Mac OS X:

Main software associated with keytab file by default:
macOS
Other suggested software:
Mac OS X

Linux/Unix:

Main software associated with keytab file by default:
Linux operating systems
Unix

Creating a keytab file

You can use the same user account for authentication on all nodes of a cluster. To do so, you must create a keytab file containing the service principal name (SPN) for each of these nodes.

To create a keytab file:

1. On the domain controller server, create a user account named control-<your name> in the Active Directory Users and Computers snap-in.
2. If you want to use the AES256-SHA1 encryption algorithm, do the following in the Active Directory Users and Computers snap-in:
   1. Open the properties of the created account.
   2. On the Account tab, select the This account supports Kerberos AES 256 bit encryption check box.
3. Create a keytab file for the user named control-<your name>. To do so, run the following command in the command line:

   C:Windowssystem32ktpass.exe -princ HTTP/<fully qualified domain name (FQDN) of the node with role Control>@<realm Active Directory domain name in uppercase> -mapuser control-<your name>@<realm Active Directory domain name in uppercase> -crypto <encryption type, RC4-HMAC-NT is recommended> -ptype KRB5_NT_PRINCIPAL -pass <user password control-<your name>> -out C:control-<your name>.keytab

   Example name of a node: node01.test.local@TEST.LOCAL

   The SPN of the node with role Control will be added to the created keytab file.

4. For each node of the cluster, add an SPN entry to the keytab file. To do so, run the following command:

   C:Windowssystem32ktpass.exe -princ HTTP/<fully qualified domain name (FQDN) of the node>@<realm Active Directory domain name in uppercase> -mapuser control-<your name>@<realm Active Directory domain name in uppercase> -crypto <encryption type, RC4-HMAC-NT is recommended> -ptype KRB5_NT_PRINCIPAL -pass <user password control-<your name>> -in C:control-<name of the previously created file>.keytab -out C:control-<new name>.keytab -setupn -setpass

Generate Keytab File Mac

A keytab file named C:control-<new name>.keytab will be created. This file will contain all added SPNs of cluster nodes.

Example: For example, you created a file named control-tmp1.keytab when completing step 3. In this case, to add one more SPN, you must run the following command: C:Windowssystem32ktpass.exe -princ HTTP/<fully qualified domain name (FQDN) of the node>@<realm Active Directory domain name in uppercase> -mapuser control-<your name>@<realm Active Directory domain name in uppercase> -crypto <encryption type, RC4-HMAC-NT is recommended> -ptype KRB5_NT_PRINCIPAL -pass <user password control-<your name>> -in C:control-tmp1.keytab -out C:control-tmp2.keytab -setupn -setpass To add a third SPN, you must run the following command: C:Windowssystem32ktpass.exe -princ HTTP/<fully qualified domain name (FQDN) of the node>@<realm Active Directory domain name in uppercase> -mapuser control-<your name>@<realm Active Directory domain name in uppercase> -crypto <encryption type, RC4-HMAC-NT is recommended> -ptype KRB5_NT_PRINCIPAL -pass <user password control-<your name>> -in C:control-tmp2.keytab -out C:control-tmp3.keytab -setupn -setpass This will result in the creation of a file named control-tmp3.keytab containing all three added SPNs.

Generate Keytab File Windows

Page top