From b1b4c1e70d8c25d2659392984f66109bbe286f06 Mon Sep 17 00:00:00 2001
From: Clark Boylan <clark.boylan@gmail.com>
Date: Fri, 22 Feb 2019 14:28:21 -0800
Subject: [PATCH] Document kerberos stash file requirement

This adds a piece of missing documentation for running kerberos KDC
servers.

Change-Id: Iac1ffec96ec459ac5856dcdf0fbb2c83224acdb4
---
 doc/source/kerberos.rst | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/doc/source/kerberos.rst b/doc/source/kerberos.rst
index d4b8580d57..4116a7f85f 100644
--- a/doc/source/kerberos.rst
+++ b/doc/source/kerberos.rst
@@ -56,6 +56,10 @@ Copy the file `/etc/krb5.keytab` to the second kdc host.
 
 The puppet config sets up slave propagation scripts and cron jobs to run them.
 
+You will also need to create a stash file after creating a new realm. Run
+`krb5_util stash` on the first kdc host. Copy the file `/etc/krb5kdc/stash`
+to all other KDC servers for the krb5-kdc daemons to run.
+
 .. _addprinc:
 
 Adding A User Principal