Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. IT Analytics Help
  3. Section XVI. System Administration
  4. Appendix F. Kerberos based proxy user's authentication in Oracle
  5. Exporting service and user principal's to keytab file on KDC

Exporting service and user principal's to keytab file on KDC

The Authentication Server needs a keytab file and validate a user when refreshing session credentials.

This section describes how to export and copy a keytab file.

  1. Create oracle service principal.
    # kadmin.local
      addprinc -randkey <oracle SID>/<oracle server host name>@<domain realm name> 
    

    For example: addprinc -randkey scdb/abc.example.com@EXAMPLE.COM

  2. Extract oracle service principal to keytab file
    # kadmin.local 
    ktadd -k <keytab file path> <oracle SID>/<oracle server host name>@<domain realm name> 
    

    For example: ktadd -k /tmp/keytab scdb/abc.example.com@EXAMPLE.COM

  3. Create Kerberos user principal
    #  kadmin.local 
    addprinc <kerberos user name> 
    

    For example: addprinc k1portal

  4. Extract Kerberos user principal to keytab file.
    # kadmin.local 
    ktadd -k <keytab file path> <kerberos user name> 
    

    For example:ktadd -k /tmp/keytab k1portal

Feedback

Was this page helpful?
Previous

Pre-requisite

Next

Modifications for Oracle

Feedback

Was this page helpful?