Is it possible to use kadmin (Linux) to add/remote SPNs from an Active Directory server?
I'm trying to add some service principles on my Active Directory server and store the keys in the local keytab (on the Linux machine).
SnapOverflow
Is it possible to use kadmin (Linux) to add/remote SPNs from an Active Directory server?
I'm trying to add some service principles on my Active Directory server and store the keys in the local keytab (on the Linux machine).
Short answer: no. kadmin can only talk with an actual MIT Kerberos server/database.
However, you should still be able to add/remove/change SPNs in Active Directory via standard LDAP tools. The SPN's associated with an object are in a multi-valued attribute called "servicePrincipalName".