{"id":1368,"date":"2012-11-07T15:10:36","date_gmt":"2012-11-07T15:10:36","guid":{"rendered":"http:\/\/blog.designed79.co.uk\/?p=1368"},"modified":"2012-12-20T09:50:28","modified_gmt":"2012-12-20T09:50:28","slug":"how-to-rebuild-kerberos-on-mac-os-x-10-6-10-7-10-8","status":"publish","type":"post","link":"https:\/\/blog.designed79.co.uk\/?p=1368","title":{"rendered":"How to rebuild Kerberos on Mac OS X 10.6, 10.7 &#038; 10.8"},"content":{"rendered":"<p>After a lot of searching and trying I have finally come up with a way of rebuild the local KDC in OS X.<\/p>\n<p>This script covers 10.6 up to 10.8.<\/p>\n<p><a href=\"https:\/\/blog.designed79.co.uk\/wp-content\/uploads\/2012\/11\/rebuildKerberos.sh_.zip\">rebuildKerberos.sh<\/a><\/p>\n<div class=\"codecolorer-container bash default\" style=\"overflow:auto;white-space:nowrap;height:300px;\"><table cellspacing=\"0\" cellpadding=\"0\"><tbody><tr><td class=\"line-numbers\"><div>1<br \/>2<br \/>3<br \/>4<br \/>5<br \/>6<br \/>7<br \/>8<br \/>9<br \/>10<br \/>11<br \/>12<br \/>13<br \/>14<br \/>15<br \/>16<br \/>17<br \/>18<br \/>19<br \/>20<br \/>21<br \/>22<br \/>23<br \/>24<br \/>25<br \/>26<br \/>27<br \/>28<br \/>29<br \/>30<br \/>31<br \/>32<br \/>33<br \/>34<br \/>35<br \/>36<br \/>37<br \/><\/div><\/td><td><div class=\"bash codecolorer\"><span class=\"co0\">#!\/bin\/bash<\/span><br \/>\n<br \/>\n<span class=\"co0\">## rebuildKerberos<\/span><br \/>\n<span class=\"co0\">## by Daniel Shane 06\/12\/2012<\/span><br \/>\n<span class=\"co0\">## to use : sudo rebuildKerberos \/Volumes\/Macintosh\\ HD<\/span><br \/>\n<br \/>\n<span class=\"co0\">## Check for Root<\/span><br \/>\n<span class=\"kw1\">if<\/span> <span class=\"br0\">&#91;<\/span> <span class=\"st0\">&quot;<span class=\"es4\">$(id -u)<\/span>&quot;<\/span> <span class=\"sy0\">!<\/span>= <span class=\"st0\">&quot;0&quot;<\/span> <span class=\"br0\">&#93;<\/span><br \/>\n<span class=\"kw1\">then<\/span><br \/>\n&nbsp; &nbsp;<span class=\"kw3\">echo<\/span> <span class=\"st0\">&quot;rebuildKerberos must be run as root&quot;<\/span><br \/>\n&nbsp; &nbsp;<span class=\"kw3\">exit<\/span> <span class=\"nu0\">1<\/span><br \/>\n<span class=\"kw1\">fi<\/span><br \/>\n<br \/>\n<span class=\"co0\">## Check for Path<\/span><br \/>\n<span class=\"kw1\">if<\/span> <span class=\"br0\">&#91;<\/span> <span class=\"re5\">-z<\/span> <span class=\"st0\">&quot;$1&quot;<\/span> <span class=\"br0\">&#93;<\/span><br \/>\n<span class=\"kw1\">then<\/span><br \/>\n&nbsp; &nbsp; <span class=\"kw3\">echo<\/span> <span class=\"st0\">&quot;rebuildKerberos needs a path to the volume to work on e.g. \/Volumes\/Macintosh\\ HD&quot;<\/span> <br \/>\n&nbsp; &nbsp; <span class=\"kw3\">exit<\/span> <span class=\"nu0\">1<\/span><br \/>\n<span class=\"kw1\">fi<\/span><br \/>\n<br \/>\n<span class=\"co0\">## Rebuild System Keychain<\/span><br \/>\n<span class=\"sy0\">\/<\/span>usr<span class=\"sy0\">\/<\/span>sbin<span class=\"sy0\">\/<\/span>systemkeychain <span class=\"re5\">-k<\/span> <span class=\"st0\">&quot;$1&quot;<\/span><span class=\"sy0\">\/<\/span>Library<span class=\"sy0\">\/<\/span>Keychains<span class=\"sy0\">\/<\/span>System.keychain <span class=\"re5\">-C<\/span> <span class=\"re5\">-f<\/span><br \/>\n<br \/>\n<span class=\"co0\">## Remove Old KDC Files<\/span><br \/>\n<span class=\"kw2\">rm<\/span> <span class=\"re5\">-rf<\/span> <span class=\"st0\">&quot;$1&quot;<\/span><span class=\"sy0\">\/<\/span>private<span class=\"sy0\">\/<\/span>var<span class=\"sy0\">\/<\/span>db<span class=\"sy0\">\/<\/span>krb5kdc<br \/>\n<span class=\"kw2\">rm<\/span> <span class=\"re5\">-rf<\/span> <span class=\"st0\">&quot;$1&quot;<\/span><span class=\"sy0\">\/<\/span>private<span class=\"sy0\">\/<\/span>etc<span class=\"sy0\">\/<\/span>krb5.keytab<br \/>\n<br \/>\n<br \/>\n<span class=\"co0\">## Enable the configureLocalKDC LaunchD Item<\/span><br \/>\n<span class=\"sy0\">\/<\/span>usr<span class=\"sy0\">\/<\/span>bin<span class=\"sy0\">\/<\/span>defaults delete <span class=\"st0\">&quot;$1&quot;<\/span><span class=\"sy0\">\/<\/span>System<span class=\"sy0\">\/<\/span>Library<span class=\"sy0\">\/<\/span>LaunchDaemons<span class=\"sy0\">\/<\/span>com.apple.configureLocalKDC Disabled <span class=\"sy0\">&amp;&gt;\/<\/span>dev<span class=\"sy0\">\/<\/span>null<br \/>\n<br \/>\n<span class=\"co0\">## Set Ownership on the configureLocalKDC LaunchD Item<\/span><br \/>\n<span class=\"kw2\">chown<\/span> root:wheel <span class=\"st0\">&quot;$1&quot;<\/span><span class=\"sy0\">\/<\/span>System<span class=\"sy0\">\/<\/span>Library<span class=\"sy0\">\/<\/span>LaunchDaemons<span class=\"sy0\">\/<\/span>com.apple.configureLocalKDC.plist<br \/>\n<br \/>\n<span class=\"co0\">## Kill .configureLocalKDC from \/var\/db<\/span><br \/>\n<span class=\"kw2\">rm<\/span> <span class=\"re5\">-f<\/span> <span class=\"st0\">&quot;$1&quot;<\/span><span class=\"sy0\">\/<\/span>private<span class=\"sy0\">\/<\/span>var<span class=\"sy0\">\/<\/span>db<span class=\"sy0\">\/<\/span>.configureLocalKDC<br \/>\n<span class=\"kw3\">echo<\/span> <span class=\"st0\">&quot;$1&quot;<\/span> is now ready to be booted from<\/div><\/td><\/tr><\/tbody><\/table><\/div>\n","protected":false},"excerpt":{"rendered":"<p>After a lot of searching and trying I have finally come up with a way of rebuild the local KDC in OS [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[12,8,26,9,7],"class_list":["post-1368","post","type-post","status-publish","format-standard","hentry","category-info-on-tech","tag-10-6-8","tag-10-7","tag-10-8","tag-lion","tag-osx"],"_links":{"self":[{"href":"https:\/\/blog.designed79.co.uk\/index.php?rest_route=\/wp\/v2\/posts\/1368","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.designed79.co.uk\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.designed79.co.uk\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.designed79.co.uk\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.designed79.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1368"}],"version-history":[{"count":0,"href":"https:\/\/blog.designed79.co.uk\/index.php?rest_route=\/wp\/v2\/posts\/1368\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.designed79.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1368"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.designed79.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1368"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.designed79.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1368"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}