Each ticket is identified by a principal name. The principal name can identify a user or a service. Here are examples of several of the principal names.
Table 23-4 Examples of Principal Names
Principal Name |
Description |
---|---|
root/boston.acme.com@ACME.COM |
A principal associated with the root account on an NFS client. This is called a root principal and is needed for authenticated NFS-mounting to succeed. |
host/boston.acme.com@ACME.COM |
A principal used by the Kerberized applications (klist for example) or services (such as the NFS service). |
username@ACME.COM |
A principal for a user. |
username/admin@ACME.COM |
An admin principal that can be used to administer the KDC database. |
nfs/boston.acme.com@ACME.COM |
A principal used by the nfs service. This can be used instead of a host principal. |