11.5. Using the Same Service Principal for Multiple Services
Within a cluster, the same service principal can be used for multiple services, spread across different machines.
- Retrieve a service principal using the
# ipa-getkeytab -s kdc.example.com -p HTTP/server.example.com -k /etc/httpd/conf/krb5.keytab -e aes256-cts
- Either direct multiple servers or services to use the same file, or copy the file to individual servers as required.