I've solved my problem by:

1) generating des-cbc-crc only keys in /etc/krb5.keytab on server and client 
with
     sudo kadmin -p XXX/admin -q "ktadd -e des-cbc-crc:normal 
nfs/servername.fqn"

2) allowing weak enc. (server and client) and changing the algorithm
order in /etc/krb5.conf (server):

allow_weak_crypto = true
default_etypes = arcfour-hmac-md5 des3-cbc-sha1
default_etypes_des = des-cbc-md5,des-cbc-crc
default_tgs_enctypes = des-cbc-md5,des-cbc-crc
default_tkt_enctypes = des-cbc-md5,des-cbc-crc
permitted_enctypes = 
des-cbc-md5,des-cbc-crc,des3-cbc-sha1,arcfour-hmac-md5,des-cbc-md4,aes256-cts-hmac-sha1-96,aes128-cts-hmac-sha1-96

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/938581

Title:
  rpc.svcgssd ERROR: prepare_krb5_rfc_cfx_buffer: not implemented

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nfs-utils/+bug/938581/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to