well... I resolved this by adding : -aes256-cts-hmac-sha1-96 -aes128-cts only those 2... hope this help! ... View more

Hello I'm having this same issue... I think see I'm using active directory... and I'm using the encryption type:  aes256-cts-hmac-sha1-96 only... I'm running kinit on the server and everything looks to be good... then I try to generate the missing credentials which are all of then but I'm getting this:   Kerberos encryption types configuration is invalid or missing.  as I said the encryption type is indeed set up, I also checked the file krbg5.conf and everythig looks good, in the AD I'm forcing the AES types within a policy. my guess is that the encryption type is wrong... but I'm really lost . any ideas?   thanks!! ... View more

I did the changes in the CM but didn't update my files... I had to add: default_tgs_enctypes = rc4-hmac aes256-cts aes128-cts des3-hmac-sha1 arcfour-hmac des-hmac-sha1 des-cbc-md5 des-cbc-crc default_tkt_enctypes = rc4-hmac aes256-cts aes128-cts des3-hmac-sha1 arcfour-hmac des-hmac-sha1 des-cbc-md5 des-cbc-crc permitted_enctypes = rc4-hmac aes256-cts aes128-cts des3-hmac-sha1 arcfour-hmac des-hmac-sha1 des-cbc-md5 des-cbc-crc in every host manually... after that things starting to work ... View more