From cf36aefd22fd52869d5adf97ceeae53f679ab886 Mon Sep 17 00:00:00 2001
From: Assar Westerlund <assar@sics.se>
Date: Tue, 7 Sep 1999 02:20:10 +0000
Subject: [PATCH] admin doesn't need any keytab any longer mention kpasswdd

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@6905 ec53bebd-3082-4978-b11e-865c3cabbd6b
---
 doc/setup.texi | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/doc/setup.texi b/doc/setup.texi
index 7a6d56e6d..8fe6e0af6 100644
--- a/doc/setup.texi
+++ b/doc/setup.texi
@@ -182,8 +182,6 @@ kerberos-adm stream     tcp     nowait  root /usr/heimdal/libexec/kadmind kadmin
 You might need to add @samp{kerberos-adm} to your @file{/etc/services}
 as 749/tcp.
 
-You need to add a key for @samp{kadmin/admin} to your keytab.
-
 Access to the admin server is controlled by an acl-file, (default
 @file{/var/heimdal/kadmind.acl}.) The lines in the access file, has the
 following syntax:
@@ -197,6 +195,14 @@ The privileges you can assign to a principal are: @samp{add},
 @samp{all}. All of these roughly corresponds to the different commands
 in @samp{kadmin}.
 
+@section Password changing
+
+To allow users to change their passwords, you should run @samp{kpasswdd}.
+It is not run from @samp{inetd}.
+
+You might need to add @samp{kpasswd} to your @file{/etc/services} as
+464/udp.
+
 @section Testing clients and servers
 
 Now you should be able to run all the clients and servers.  Refer to the