Dell Unity: How to check which Kerberos encryption types are enabled on a NAS server.
Summary: This article helps storage administrators to check which Kerberos encryption types are enabled on a NAS server, without having to mount the NAS server.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Instructions
The following command can be used to find out encryption types enabled on <NAS Server Name>:
svc_nas <Nas Server Name> -kerberos -conf
where:
-kerberos- Displays the current NAS server Kerberos settings.
-conf- Dumps the Kerberos configuration file for this NAS server.
- The command fails if the
ALLoption is specified, instead of a specific NAS server
ERROR: This command cannot be run on 'ALL' NAS servers. Need to specify only one NAS server.
Example output of the above command: (This is an abridged output to only show the encryption types)
17:37:51 service@xxx spb:~/user# svc_nas <NAS Server name> -kerberos -conf
#krb5.conf version = 2
[libdefaults]
default_tgs_enctypes = aes256-cts-hmac-sha1-96 aes128-cts-hmac-sha1-96 rc4-hmac-md5 des-cbc-md5 des-cbc-crc
default_tkt_enctypes = aes256-cts-hmac-sha1-96 aes128-cts-hmac-sha1-96 rc4-hmac-md5 des-cbc-md5 des-cbc-crc
dns_fallback = y
[...]Additional Information
Reference document: Dell Unity™ Family Service Commands Technical Notes
Affected Products
Dell EMC Unity, Dell EMC Unity Family |Dell EMC Unity All Flash, Dell EMC Unity Hybrid, Dell Unity Operating Environment (OE)Article Properties
Article Number: 000486530
Article Type: How To
Last Modified: 14 يوليو 2026
Version: 1
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.