diff --git a/nfs-client/handlers/main.yml b/nfs-client/handlers/main.yml
index cad92090023494f976c4fd01e930cadfbfbb2c1f..6697abf0c5ab1d75df6ace43e6bf1eb316407f4f 100644
--- a/nfs-client/handlers/main.yml
+++ b/nfs-client/handlers/main.yml
@@ -9,3 +9,6 @@
 
 - name: reload sysfs.conf
   service: name=sysfsutils state=restarted
+
+- name: reload sysctl
+  command: sysctl -p
diff --git a/nfs-client/tasks/main.yml b/nfs-client/tasks/main.yml
index b79fc798143a96a0daaeb327b79562e4411d00ba..f47f6de38c718884079c8d35e9162f7b7531dffd 100644
--- a/nfs-client/tasks/main.yml
+++ b/nfs-client/tasks/main.yml
@@ -39,6 +39,15 @@
     - sysfs
     - config
 
+- name: ensure the kernel key storage quote used for idmapping is sufficiently high
+  sysctl: name=kernel.keys.root_maxkeys state=present value=1000 # default is 200, this quote was reached
+  notify:
+    - reload sysctl
+  tags:
+    - nfs-client
+    - sysctl
+    - config
+
 # makes life much easier to have an automounter and not /etc/fstab
 - name: ensure automounter is installed
   apt: name=autofs state=latest