PowerCenter
- PowerCenter H2L
- All Products
ktpass.exe -out <KeytabFilename> -princ <ServicePrincipalName> -mapuser <UserAccount> [-pass <UserAccountPassword>]-crypto <Keys> -ptype <PrincipalType>
Option
| Description
|
---|---|
-out
| The file name of the Kerberos keytab file to generate as shown under the
KEY_TAB_NAME column in the SPNKeytabFormat.txt file.
|
-princ
| The service principal name displayed under the
SPN column in the SPNKeytabFormat.txt file.
|
-mapuser
| The Active Directory user account to associate with the SPN.
|
-pass
| The password set in Active Directory for the Active Directory user account, if applicable.
|
-crypto
| Specifies the key types generated in the keytab file.
Set to all to use all supported cryptographic types.
|
-ptype
| The principal type. Set to KRB5_NT_PRINCIPAL.
|
User Account
| Keytab Type
| SPN
|
---|---|---|
nodeuser01
| NODE_SPN
| isp/node01/InfaDomain/COMPANY.COM
|
httpuser01
| NODE_HTTP_SPN
| HTTP/US001DEV.company.com@COMPANY.COM
|
nodeuser02
| NODE_SPN
| isp/node02/InfaDomain/COMPANY.COM
|
httpuser02
| NODE_HTTP_SPN
| HTTP/US005DEV.company.com@COMPANY.COM
|
nodeuser03
| NODE_SPN
| isp/node03/InfaDomain/COMPANY.COM
|
Keytab File
| Location on Node
|
---|---|
<node name>.keytab
| Copy each file to the corresponding node.
|
webapp_http.keytab
| Copy each file to the corresponding node.
|
ldapuser.keytab
| Copy the file to each gateway node.
|