I've solved my problem by:
1) generating des-cbc-crc only keys in /etc/krb5.keytab on server and client
with
sudo kadmin -p XXX/admin -q "ktadd -e des-cbc-crc:normal
nfs/servername.fqn"
2) allowing weak enc. (server and client) and changing the algorithm
order in /etc/krb5.conf (server):
allow_weak_crypto = true
default_etypes = arcfour-hmac-md5 des3-cbc-sha1
default_etypes_des = des-cbc-md5,des-cbc-crc
default_tgs_enctypes = des-cbc-md5,des-cbc-crc
default_tkt_enctypes = des-cbc-md5,des-cbc-crc
permitted_enctypes =
des-cbc-md5,des-cbc-crc,des3-cbc-sha1,arcfour-hmac-md5,des-cbc-md4,aes256-cts-hmac-sha1-96,aes128-cts-hmac-sha1-96
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/938581
Title:
rpc.svcgssd ERROR: prepare_krb5_rfc_cfx_buffer: not implemented
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nfs-utils/+bug/938581/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
