本文共 2198 字,大约阅读时间需要 7 分钟。
1.登录 kinit admin/admin@EXAMPLE.COM
2.查询登录状态 klist
3.退出 kdestroy
4.登录管理KDC服务器
登录后台 kadmin.local
查看用户列表 listprincs
修改账号密码 change_passwordadmin/admin@EXAMPLE.COM
删除用户 delete_principal test1
创建用户add_principal test/admin@EXAMPLE.COM
5.使用Keytab验证是否可以登录(无错误输出即可)
kinit -kt /etc/security/keytabs/admin.keytab admin/admin@EXAMPLE.COM
6.查看keytab文件中的帐号列表
klist -ket /etc/security/keytabs/hdfs.headless.keytab
7.将用户导入到keytab文件(修改密码或者增加用户之后如果使用kinit -kt /etc/security/keytabs/admin.keytab admin/admin@EXAMPLE.COM 登录需要导出到keytab文件 )
[root@ambari-01 presto]# kadmin.local
Authenticating as principal root/admin@thxh.COM with password.
kadmin.local: xst -k /etc/security/keytabs/hive.service.keytab hive/ambari-01@thxh.COM
Entry for principal hive/ambari-01@thxh.COM with kvno 5, encryption type aes256-cts-hmac-sha1-96 added to keytab WRFILE:/etc/security/keytabs/hive.service.keytab.
Entry for principal hive/ambari-01@thxh.COM with kvno 5, encryption type aes128-cts-hmac-sha1-96 added to keytab WRFILE:/etc/security/keytabs/hive.service.keytab.
Entry for principal hive/ambari-01@thxh.COM with kvno 5, encryption type des3-cbc-sha1 added to keytab WRFILE:/etc/security/keytabs/hive.service.keytab.
Entry for principal hive/ambari-01@thxh.COM with kvno 5, encryption type arcfour-hmac added to keytab WRFILE:/etc/security/keytabs/hive.service.keytab.
Entry for principal hive/ambari-01@thxh.COM with kvno 5, encryption type camellia256-cts-cmac added to keytab WRFILE:/etc/security/keytabs/hive.service.keytab.
Entry for principal hive/ambari-01@thxh.COM with kvno 5, encryption type camellia128-cts-cmac added to keytab WRFILE:/etc/security/keytabs/hive.service.keytab.
Entry for principal hive/ambari-01@thxh.COM with kvno 5, encryption type des-hmac-sha1 added to keytab WRFILE:/etc/security/keytabs/hive.service.keytab.
Entry for principal hive/ambari-01@thxh.COM with kvno 5, encryption type des-cbc-md5 added to keytab WRFILE:/etc/security/keytabs/hive.service.keytab.
kadmin.local: exit
xst -k /etc/security/keytabs/hive.service.keytab -norandkey hive/ambari-01@thxh.COM (不修改密码)
这个好使 ktadd -k /etc/security/keytabs/user.keytab -norandkey user(不修改密码)
修改账号密码 change_passwordadmin/admin@EXAMPLE.COM再试试导入密码到文件
转载地址:https://blog.csdn.net/weixin_33758343/article/details/116814060 如侵犯您的版权,请留言回复原文章的地址,我们会给您删除此文章,给您带来不便请您谅解!