kstash reads the Kerberos master key and stores it in a file that will be used by the KDC.
Supported options:
-e string, --enctype=string
the encryption type to use, defaults to DES3-CBC-SHA1.
-k file, --key-file=file
the name of the master key file.
--convert-file
don't ask for a new master key, just read an old master key file, and write it back in the new keyfile format.
--random-key
generate a random master key.
--master-key-fd=fd
filedescriptor to read passphrase from, if not specified the passphrase will be read from the terminal.