root@server:~# kadmin.local

kadmin.local:  addprinc user1
...
Enter password for principal "user1@CORPX.UN": kpassword1
Re-enter password for principal "user1@CORPX.UN": kpassword1
...
kadmin.local:  addprinc user2
...
kadmin.local:  listprincs
...
user1@CORPX.UN
...
kadmin.local: quit

root@server:~#  
kadmin.local -q 'addprinc -pw kpassword2 user2'
kadmin.local -q 'addprinc -pw kpassword3 user3'
kadmin.local -q 'addprinc -pw kpassword4 user4'

root@server:~#  kadmin.local -q 'change_password -pw kpassword1 user1'

server# kadmin -l
kadmin> add user1
...
user1@CORPX.UN's Password: kpassword1
Verifying - user@CORPX.UN's Password: kpassword1
...
kadmin> add user2
...

kadmin> list *

kadmin> quit

server# kinit user1
server# klist
server# kdestroy

gate# kinit user1
gate# klist
gate# kdestroy

client1# kinit user1
client1# klist
client1# kdestroy

• GSSAPI Generic Security Services Application Program Interface
• Аутентификация с использованием протокола GSSAPI Сервис SSH

server# kadmin -l
kadmin> add host/client2.corpX.un
...
host/client2.corpX.un@CORPX.UN's Password: 12345678
...
kadmin> list *

kadmin> 

root@server:~# kadmin.local
kadmin.local:  addprinc -e rc4-hmac:normal host/client2.corpX.un
...
Enter password for principal "host/client2.corpX.un@CORPX.UN": 12345678
...
kadmin.local:  listprincs

или

root@server:~#  kadmin.local -q 'addprinc -e rc4-hmac:normal -pw 12345678 host/client2.corpX.un'

gate# ktutil remove -p 'HTTP/gate.CORPX.UN@CORPX.UN'

kadmin.local:  delprinc HTTP/gate.CORPX.UN@CORPX.UN