How to Restore the Kerberos Database
-
Become superuser on the master KDC.
-
Restore the Kerberos database by using the load command of kdb_util.
# /usr/sbin/kdb5_util load [-verbose] [-d dbname] [-update] [filename]
-verbose
Prints the name of each principal and policy that is being restored.
dbname
Defines the name of the database to restore. Note that “.db” is appended to whatever database name is specified, and you can specify an absolute path for the file. If the -d option is not specified, the default database name is /var/krb5/principal, which actually becomes /var/krb5/principal.db.
-update
Updates the existing database. Otherwise, a new database is created or the existing database is overwritten.
filename
Defines the file from which to restore the database. You can specify an absolute path for the file.
Example—Restoring the Kerberos Database
In the following example, the database called database1.db is restored into the current directory from the dumpfile file. Since the -update option isn't specified, a new database is created by the restore.
# kdb5_util load -d database1 dumpfile |
- © 2010, Oracle Corporation and/or its affiliates