Skip to main content

Securing MarkLogic Server

Creating a Keytab File on Linux

On Linux platforms, the services.keytab file is created as follows:

  1. In a shell window, use kadmin.local to start the Kerberos administration command-line tool.

  2. Use the addprinc command to add the principal to Kerberos.

  3. Use the ktadd command to generate the services.keytab file for the principal.

    For example, to create a services.keytab file for the host named mysrvr.marklogic.com, do the following:

    $ kadmin.local
    > addprinc -randkey HTTP/mysrvr.marklogic.com
    > ktadd -k services.keytab HTTP/mysrvr.marklogic.com
  4. Copy the services.keytab from the Linux Kerberos server to the MarkLogic Server data directory on your MarkLogic Server.