msktutil
« Back to VersTracker
Description:
Active Directory keytab management
Type: Formula  |  Tracked Since: Dec 28, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: active-directory kerberos keytab security networking
Install: brew install msktutil
About:
Msktutil is a command-line utility designed for managing Kerberos keytabs and Service Principal Names (SPNs) within Active Directory environments. It automates the complex process of joining Linux/Unix systems to a domain and configuring services for Kerberos authentication. Its main value is simplifying secure service integration without requiring Windows-based tools.
Key Features:
  • Automates SPN creation and deletion
  • Generates and uploads keytabs for services
  • Supports joining Linux/Unix hosts to Active Directory
  • Handles password changes for machine accounts
Use Cases:
  • Integrating Linux file servers (Samba) with Active Directory authentication
  • Configuring Linux web servers (Apache/Nginx) for Kerberos-protected SPNEGO authentication
  • Joining Linux workstations to an AD domain for centralized identity management
Alternatives:
  • samba-tool – Part of the Samba suite; offers broader AD domain controller capabilities but is heavier for simple client joins.
  • adcli – Part of realmd ecosystem; provides similar join functionality with a focus on integration with system auth config.
Version History
Detected Version Rev Change Commit
Sep 16, 2025 4:29am 0 VERSION_BUMP fbc6459a
Sep 13, 2024 8:49pm 0 VERSION_BUMP 4eea9acd
Nov 8, 2023 10:20pm 0 VERSION_BUMP e33b5719
« Back to VersTracker  |  Browse Packages  |  About