Home > Configuration > AAA > setaaakcdaccount_saltexpression

setaaakcdaccount_saltexpression

Use this method to set salt expression used by Kerberos impersonation. When configured, this expression will be used for key
derivation with AES-128 or AES-256 encryption types. For RC4 encryption, the salt is not used.

If the salt expression is not set, the default behavior is to derive the salt value from the Kerberos principal.

Syntax



Parameters

kcdaccount

The name of the KCD account.
This is mandatory parameter.

saltexpression

Salt expression used by Kerberos impersonation. When configured, this expression will be used for key derivation with AES-128 or AES-256 encryption types. For RC4 encryption, the salt is not used. If the salt expression is not set, the default behavior is to derive the salt value from the Kerberos principal.

Return Value

Returns simpleResult

See Also


addaaakcdaccount

checkaaakcdaccount

getaaakcdaccount

rmaaakcdaccount

setaaakcdaccount_cacert

setaaakcdaccount_delegateduser

setaaakcdaccount_enterpriserealm

setaaakcdaccount_kcdpassword

setaaakcdaccount_keytab

setaaakcdaccount_realmstr

setaaakcdaccount_servicespn

setaaakcdaccount_usercert

setaaakcdaccount_userrealm

unsetaaakcdaccount_cacert

unsetaaakcdaccount_delegateduser

unsetaaakcdaccount_enterpriserealm

unsetaaakcdaccount_kcdpassword

unsetaaakcdaccount_saltexpression

unsetaaakcdaccount_servicespn

unsetaaakcdaccount_usercert

unsetaaakcdaccount_userrealm