Red Hat Bugzilla – Bug 800542
Need way to obtain DES keys for older NFS
Last modified: 2012-06-21 19:15:09 EDT
This bug is created as a clone of upstream ticket:
DES is completely disabled in 2.2 servers. We need a way to be able to generate DES keys at least for older NFS clients and servers.
I tried adding allow_weak_crypto = yes to libdefaults of the IPA server krb5.conf and adding support for the enc type but was still unable to use ipa-getkeytab from a RHEL-5 client.
I added this to LDAP:
Setting all priority and severity to medium.