Has keytab got a lifetime?

About

Asked 3/11, 2014 at 13:10 Answered 3/11, 2014 at 15:53

I've have a keytab that is scheduled to run daily(just once) to renew it's ticket. However, I wanted to find out whether keytab itself has any lifetime? I assume it doesn't as the cron job has been configured to execute daily which i think will create a new ticket instead of renewing?

Monah answered 3/11, 2014 at 13:10 Comment(0)

Brought from mit kerberos: "A keytab (short for “key table”) stores long-term keys for one or more principals." The keytab file will store your key which allows you to automate your usage of the kerberos principals without any "human interaction". As you know the tickets are only valid between a somewhat short amount, typically between 12 and 24 hours, however the keytab is valid as long as you find it valid. By this i mean that if any third entity get hold of the keytab it loses all it's purpose.

Eradicate answered 3/11, 2014 at 15:53 Comment(2)

is it safe to assume that keytab will be valid as long as I want it to be (until i change the password?) – Monah 3/11, 2014 at 16:2

Yes. As long as you do not change your password which would require you to generate a new key entry/keytab and as long as you save it in a safe environment(Assume no third party has access to your keytab, either remote or locally). – Eradicate 3/11, 2014 at 17:28

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags