Security - Export Kerberos KeyTab from Windows Root CA
KeyTab Export
To export the KeyTab on the cert that was installed, in this case it is for KeyCloak
Run this in PowerShell
cd \temp
ktpass -princ HTTP/server.domain.com@SERVER.DOMAIN.COM -mapuser user@DOMAIN.COM -pass '' -crypto AES256-SHA1 -ptype KRB5_NT_PRINCIPAL -out keycloak.keytab
dirThis will show you the newly create KeyTab
