diff --git a/admin-guide/configuration/basic/gssproxy_with_keytab.md b/admin-guide/configuration/basic/gssproxy_with_keytab.md
index 7ec2e5e5..b772a294 100644
--- a/admin-guide/configuration/basic/gssproxy_with_keytab.md
+++ b/admin-guide/configuration/basic/gssproxy_with_keytab.md
@@ -20,7 +20,12 @@ ktutil:  exit
 $
 ```
 Note that inside `ktutil` variables are not interpolated as this is not `bash`.
-
+To test if the keytab works as intended do
+```
+$ kinit -t $UID.keytab -k $USER
+$
+```
+and without output it is working fine.
 
 Then as root (`sudo`) make it known to `gssproxy`:
 ```
@@ -28,3 +33,5 @@ Then as root (`sudo`) make it known to `gssproxy`:
 # chmod 600 /var/lib/gssproxy/clients/$UID.keytab
 # chown root:root /var/lib/gssproxy/clients/$UID.keytab
 ```
+
+If you want to [distribute the keytab with Puppet/Hiera](../files/distribute_files), ensure it is [stored in Hiera encrypted](../../puppet/hiera#encrypt-data).