Creating a keytab file for the Squid service

To create a keytab file for the Squid service:

1. Connect to the Active Directory domain controller.
2. In the Domains Users and Computers snap-in, create a user named squid-user.
3. Start the creation of a keytab file for squid-user. To do so, execute the command:

   C:\Windows\system32\ktpass.exe /princ HTTP/<name of the server hosting the Squid service>@<realm uppercase Active Directory domain name> /mapuser <LDAP user of the Squid service>@<realm uppercase Active Directory domain name> /crypto <encryption type, RC4-HMAC-NT is recommended> /ptype KRB5_NT_PRINCIPAL /pass <password of the Squid service LDAP user> /out C:\squid.keytab

The keytab file for the Squid service will be created.

Page top