How to Restore the Kerberos Database
-
Become superuser on the master KDC.
-
Restore the Kerberos database by using the load command of kdb_util.
# /usr/krb5/sbin/kdb5_util load [-verbose] [-d dbname] [-update] [filename]
-verbose
Prints the name of each principal and policy that is being restored.
dbname
The name of the database to restore. Note that ".db" is appended to whatever database name is specified, and an absolute path for the file can be specified. If the -d option is not specified, the default database name is /var/krb5/principal, which actually becomes /var/krb5/principal.db.
-update
Updates the existing database; otherwise a new database is created or the existing database is overwritten.
filename
The file from which to restore the database. An absolute path for the file can be specified.
Example--Restoring the Kerberos Database
The following example restores the database called database1.db into the current directory from the dumpfile file. Since the -update option isn't specified, a new database is created by the restore.
# kdb5_util load -d database1 dumpfile |
- © 2010, Oracle Corporation and/or its affiliates