1
eDir: Passwords for Service Objects
2
============================================
4
The command *setsrvpw* allows an administrator to set password for service objects such as KDC and Administration server in eDirectory and store them in a file. The syntax is::
6
setsrvpw [-randpw|-fileonly][-f filename] service_dn
8
Options are as follows:
10
================= =================================================================
11
-randpw Generates and sets a random password on the directory object and stores it in the file. The -fileonly option can not be used if -randpw option is already specified.
12
-fileonly Stores the password only in a file and not in eDirectory. The -randpw option can not be used when -fileonly option is specified.
13
-f *filename* Specifies the complete path of the file where the service object password is stashed. If this option is not specified, the default file will be /usr/local/var/service_passwd.
14
service_dn Specifies the Distinguished Name (DN) of the service object whose password is to be set.
15
================= =================================================================
19
shell% kdb5_ldap_util setsrvpw -D cn=admin,dc=example,dc=com -H ldaps://ldap-server1.mit.edu
20
setsrvpw -f /home/andrew/conf_keyfile cn=service-kdc,dc=example,dc=com
23
Password for "cn=admin,dc=example,dc=com":
24
Password for "cn=service-kdc,dc=example,dc=com":
25
Re-enter password for "cn=service-kdc,dc=example,dc=com":
33
Please, provide your feedback at krb5-bugs@mit.edu?subject=Documentation___edir