How to delete keytab files created by ktpass command

    General discussion

  • Hi

    To test the single sign on using various encryption methods we have created various keytab files using the ktpass command.

    Ktpass command is executed for same user [Test1] and different encryption types [AES128-CTS, AES256-CTS,RC4-HMAC] and multiple keytab files are created.

    C:\Users\Administrator>ktpass -princ host/<hostname>@<active directory domain> -mapuser <domain name>\TestU1 -pass * -crypto AES128-SHA1 -ptype KRB5_NT_PRINCIPAL -out C:\KeyTab\TestAES128.keytab

    and login into windows client (windows 8.1 machine) with the domain user TestU1.

    and all the key versions generated by the ktpass command are added in the machine <hotname> but the single sign on cannot be done successfully.

    please suggest how we can test encryption method one by one [AES128-CTS, AES256-CTS,RC4-HMAC] and how to remove the various keytab files generated by the ktpass command.

    Thank You

    Sunday, December 11, 2016 12:52 PM