Fail to mount NFS share with krb5p due to gssproxy error "Cannot create replay cache: No such file or directory"

Solution Verified - Updated -

Issue

  • NFS Client fails to mount NFS share with krb5p option with error below:
# mount -v -t nfs -o rw,vers=4.2,sec=krb5p <NFS share> <mount point>
mount.nfs: timeout set for Wed Jun 15 07:11:37 2022
mount.nfs: trying text-based options 'vers=4.2,sec=krb5p,addr=<NFS Server IP>,clientaddr=<NFS Client IP>'
mount.nfs: mount(2): Permission denied
mount.nfs: access denied by server while mounting <NFS share>
  • NFS Client can successfully mount the same NFS share without krb5p option.
  • /var/log/messages is getting the log entry below per second:
Jun 15 15:02:02 <NFS Server> gssproxy: GSSX_RES_ACCEPT_SEC_CONTEXT( status: { 851968 <None> 2529639083 "Unspecified GSS failure. Minor code may provide more information" "Cannot create replay cache: No such file or directory" [ ] } context_handle: <Null> output_token: <Null> delegated_cred_handle: <Null> )

Environment

  • NFS Server and NFS Client:
    • Red Hat Enterprise Linux 7
    • Red Hat Enterprise Linux 8
    • Red Hat Enterprise Linux 9
  • NFS + Kerberos + SSSD + Active Directory

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content