Fortinet white logo
Fortinet white logo

CLI Reference

config user krb-keytab

config user krb-keytab

Configure Kerberos keytab entries.

config user krb-keytab
    Description: Configure Kerberos keytab entries.
    edit <name>
        set pac-data [enable|disable]
        set principal {string}
        set ldap-server <name1>, <name2>, ...
        set keytab {string}
    next
end

config user krb-keytab

Parameter

Description

Type

Size

Default

name

Kerberos keytab entry name.

string

Maximum length: 35

pac-data

Enable/disable parsing PAC data in the ticket.

option

-

enable

Option

Description

enable

Enable parsing PAC data in the ticket.

disable

Disable parsing PAC data in the ticket.

principal

Kerberos service principal. For example, HTTP/myfgt.example.com@example.com.

string

Maximum length: 511

ldap-server <name>

LDAP server name(s).

LDAP server name.

string

Maximum length: 79

keytab

Base64 coded keytab file containing a pre-shared key.

string

Maximum length: 8191

config user krb-keytab

config user krb-keytab

Configure Kerberos keytab entries.

config user krb-keytab
    Description: Configure Kerberos keytab entries.
    edit <name>
        set pac-data [enable|disable]
        set principal {string}
        set ldap-server <name1>, <name2>, ...
        set keytab {string}
    next
end

config user krb-keytab

Parameter

Description

Type

Size

Default

name

Kerberos keytab entry name.

string

Maximum length: 35

pac-data

Enable/disable parsing PAC data in the ticket.

option

-

enable

Option

Description

enable

Enable parsing PAC data in the ticket.

disable

Disable parsing PAC data in the ticket.

principal

Kerberos service principal. For example, HTTP/myfgt.example.com@example.com.

string

Maximum length: 511

ldap-server <name>

LDAP server name(s).

LDAP server name.

string

Maximum length: 79

keytab

Base64 coded keytab file containing a pre-shared key.

string

Maximum length: 8191