From looking at the code in src/lib/kadm5/srv/svr_iters.c <https://github.com/krb5/krb5/blob/f573f7f8ee5269103a0492d6521a3242c5ffb63b/src/lib/kadm5/srv/svr_iters.c#L180>it seems like the listprincs command should support [] patterns like
From looking at the code in src/lib/kadm5/srv/svr_iters.c <https://github.com/krb5/krb5/blob/f573f7f8ee5269103a0492d6521a3242c5ffb63b/src/lib/kadm5/srv/svr_iters.c#L180>
it seems like the listprincs command should support [] patterns like
che[ca]* but it doesn't in my version (1.15.1 on centos with ldap
backend). listprincs chec* works of course.
Is there a recommended way of using the kadm5 interface to iterate
through tons of principals? [...] I'm trying figure out which princs
have passwords that are about to expire.
It's not clear how you'd iterate them all with the current API in a
remotely efficient manner. Maybe people don't want to do that very
often though.
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 296 |
Nodes: | 16 (2 / 14) |
Uptime: | 44:36:23 |
Calls: | 6,648 |
Files: | 12,197 |
Messages: | 5,329,704 |