Dell Unity: How to check which Kerberos encryption types are enabled on a NAS server.

Summary: This article helps storage administrators to check which Kerberos encryption types are enabled on a NAS server, without having to mount the NAS server.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.

Instructions

The following command can be used to find out encryption types enabled on <NAS Server Name>

svc_nas <Nas Server Name> -kerberos -conf

where: 

  • -kerberos
    • Displays the current NAS server Kerberos settings.
  • -conf
    • Dumps the Kerberos configuration file for this NAS server.
  • The command fails if the ALL option is specified, instead of a specific NAS server
ERROR: This command cannot be run on 'ALL' NAS servers. Need to specify only one NAS server.

Example output of the above command: (This is an abridged output to only show the encryption types)

17:37:51 service@xxx spb:~/user# svc_nas <NAS Server name> -kerberos -conf


#krb5.conf version = 2

[libdefaults]
        default_tgs_enctypes = aes256-cts-hmac-sha1-96 aes128-cts-hmac-sha1-96 rc4-hmac-md5 des-cbc-md5 des-cbc-crc
        default_tkt_enctypes = aes256-cts-hmac-sha1-96 aes128-cts-hmac-sha1-96 rc4-hmac-md5 des-cbc-md5 des-cbc-crc
        dns_fallback = y

[...]

Additional Information

Affected Products

Dell EMC Unity, Dell EMC Unity Family |Dell EMC Unity All Flash, Dell EMC Unity Hybrid, Dell Unity Operating Environment (OE)
Article Properties
Article Number: 000486530
Article Type: How To
Last Modified: 14 يوليو 2026
Version:  1
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.