How to Manually Propagate the Kerberos Database to the Slave KDCs

This procedure shows you how to propagate the Kerberos database using the kprop command. You can use this if you need to sync a slave KDC with the master KDC outside the periodic cron job. And, unlike the kprop_script, you can use kprop to propagate just the current database backup without first making a new backup of the database.

Become superuser on the master KDC.

(Optional) Back up the database by using the kdb5_util command.
# /usr/krb5/sbin/kdb5_util dump /var/krb5/slave_datatrans

Propagate the database to a slave KDC by using the kprop command.

# /usr/krb5/lib/kprop -f /var/krb5/slave_datatrans slave_KDC

If you want to back up the database and propagate it to a slave KDC outside the periodic cron job, you can also use the kprop_script command as follows:

# /usr/krb5/lib/kprop_script slave_KDC

Previous: How to Restore the Kerberos Database
Next: Setting Up Parallel Propagation