I've solved my problem by: 1) generating des-cbc-crc only keys in /etc/krb5.keytab on server and client with sudo kadmin -p XXX/admin -q "ktadd -e des-cbc-crc:normal nfs/servername.fqn"
2) allowing weak enc. (server and client) and changing the algorithm order in /etc/krb5.conf (server): allow_weak_crypto = true default_etypes = arcfour-hmac-md5 des3-cbc-sha1 default_etypes_des = des-cbc-md5,des-cbc-crc default_tgs_enctypes = des-cbc-md5,des-cbc-crc default_tkt_enctypes = des-cbc-md5,des-cbc-crc permitted_enctypes = des-cbc-md5,des-cbc-crc,des3-cbc-sha1,arcfour-hmac-md5,des-cbc-md4,aes256-cts-hmac-sha1-96,aes128-cts-hmac-sha1-96 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/938581 Title: rpc.svcgssd ERROR: prepare_krb5_rfc_cfx_buffer: not implemented To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nfs-utils/+bug/938581/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs