Description of problem:
Attempting to mount a share from an EMC Celerra using kerberos authentication
with hmac_md5 fails at our site. Sniffing on the network shows that the
NAS returns RPC_NT_INVALID_BINDING even though tickets could successfully
be obtained by cifs.upcall. Password-based authentication works when
'sec=krb5' is removed from the mount options.
It seems that the bug that we are running into is this recently discovered
problem in cifs-utils:
Could you please apply these patches to the cifs-utils of RHEL6?
Version-Release number of selected component (if applicable):
RHEL6 workstation, up2date.
Configure krb5.conf to only use hmac_md5 (or use an 2008R2 AD server without
backward compatibility for weak crypto).
Steps to Reproduce:
1. Get a ticket as the user used for authentication (someuser)
2. Run mount.cifs as root with arguments like this:
mount.cifs -o user=someuser,uid=33333,gid=33333,sec=krb5 //server/share /mnt
mount error(5): Input/output error
Should mount the share.
*** This bug has been marked as a duplicate of bug 645127 ***