Maximum lifetime for user ticket renewal - where to find this setting on member server?

Similar Messages

• Shift rotate weekly - where to do this setting in SAP TM?

  Hello Experts,
  In my current implementation, Shift XYZ rotate weekly for an employee A.
  where to do this setting in SAP TM?
  Please explain.
  Thanks and Regards
  Jaydeep Jadhav

  Hi,
  You can configure this under work schedule. Create a work scheule as per the shift pattern .
  Go to SPRO-Time Management-work schedule-period work schedule- define period work schedule. Here you can define the work schedule pattern ,
  IF the pattern is changinng evry 2nd week , create two entries one as week 1 and the other as week 2.

• Login failed for user '(null)'. Reason: Not associated with a trusted SQL Server connection

  "[DBNETLIB] Login failed for user '(null)'. Reason: Not associated with a trusted SQL Server connection"
  After patches applied on patch Tuesday the database reports the above error. 
  All accounts are domain accounts and SQLServer uses Windows auth.
  DCDIAG show no errors
  All servers and DC have been restarted,
  Message in db log confirms the connection is being denied due to trust.
  Event log shows same rejection
  Protocols enabled: named pipes, tcpip, memory
  TESTS:
  PortQry: "
  TCP port 1433 (ms-sql-s service): LISTENING"
  Connect with domain admin accounts works from multiple clients systems to DB.
  Cannot connect with newly created domain admin account
  Can connect if new admin account connect to server in terminal server session and uses UDL wizard or any other tool including isql.
  New standard user also fails to connect.
  NOTES:
  I removed the SSL patch and the IE security update to see if that was an issue.
  ¯\_(ツ)_/¯

  Has someone left the company or has an account of some nature been dropped/replaced?
  Please click "Mark As Answer" if my post helped. Tony C.
  Hi Tony,
  Srry but No.  We just installed the monthly updates.
  I went back and found I had missed removing a patch.  I missed the rollup for Windows Server 2003:
  Event Type: Information
  Event Source: NtServicePack
  Event Category: None
  Event ID: 4382
  Date:  3/12/2015
  Time:  12:26:04 PM
  User:  NETTEST\admin
  Computer: DATA1
  Description:
  Windows Server 2003 KB954920 was removed from your computer, and the previous Windows Server 2003 configuration was restored.
  After I removed that is still didn't work but after about five minutes it started working.
  I guess I ned to report that to MS after I research what might be changed to make the patch work.
  Every time I get stuck and ask for help it seems to be just before I stumble on the solution.
  Thanks for replying.
  Well - maybe this will help someone else.
  Thanks again for replying Tony
  ¯\_(ツ)_/¯

• I'm currently signed onto my home network and want to go on with another computer but don't remember my password for my network.  Does anyone know where to find this?  It's a password that I set myself, not the one that came with my router.

  I'm currently signed onto my home network and want to go on with another computer but don't remember my password for my network.  Does anyone know where to find this?  It's a password that I set myself, not the one that came with my router.

  It's in your Keychain on the computer you usually use to connect to your network - the "kind" will be "AirPort Network Password".
  Your Keychain can be opened by using the Keychain Access program. It is in your Utilities Folder.
  Open Keychain Access, and type airport in the search field. You will see a number of entries. Choose the one with the name of your wireless network, open it, and check the box next to "show password". Before it reveals itself you will be asked for your login password - the one you use to log in to your MacBook.
  The network password will appear in the box.
  Quit Keychain Access.

• I had a 'dead' iMac repaired and it needed a new HDD & graphics card, the repairer installed OSX 10.6.8 and i now need to install other software but I am being asked for 'User' password so I may do this, I've no idea what this will be.  Help please.

  I had a 'dead' iMac repaired and it needed a new HDD and graphics card, the repairer installed OSX 10.6.8 and i now need to install other software but I am being asked for 'User' password so I may do this, I have no idea what this will be.  can anybody help please?
  <Personal Information Edited by Host>

  On looking at the secure.log on the iMac with OSX10.6.8, I see these entries at each attempt to scp into the iMac:
  Dec 29 11:06:20 molika sshd[7248]: in pam_sm_authenticate(): Failed to determine Kerberos principal name.
  Dec 29 11:06:26 molika sshd[7246]: Accepted keyboard-interactive/pam for prowat from 137.110.243.132 port 35571 ssh2
  Dec 29 11:06:26 molika com.apple.SecurityServer[26]: Session 0x236a14 created
  Dec 29 11:06:26 molika com.apple.SecurityServer[26]: Session 0x236a14 attributes 0x20
  Dec 29 11:06:27 molika com.apple.SecurityServer[26]: Session 0x236a14 dead
  Dec 29 11:06:27 molika com.apple.SecurityServer[26]: Killing auth hosts
  Dec 29 11:06:27 molika com.apple.SecurityServer[26]: Session 0x236a14 destroyed
  I don't know what to make of this.
  Peter R

• Leave mail on server - where do I find this setting?

  Hi everyone,
  I'm looking for this setting as it informed me on the izymail website to change my setting to 'leave mail on server' as this will allow me to access my emails that I have already opened on my laptop/PC.
  Where can I find this setting? iPhone/IzyMail/Hotmail?
  Regards,

  There would be a setting in your email client for this. Outlook or outlook express you have to go into the account options/properties and in the more settings section . On the iphone I think you want to go into the advanced settings on the email account and set the delete from server option to how you like.

• Impact of decreasing Kerberos User Ticket Renewal Lifetime

  In a Domain with mostly Windows 7 clients and Windows 2008 R + 2012 R2 servers, I'm interested in lowering the
  User TGT renewal lifetime policy setting from the default (7 days) to the lowest possible value (1 day).
  The aim is to limit the timeframe in which a stolen Kerberos ticket can be reused without having the principal's password for authentication.
  My impression is that Windows 7 will handle ticket renewal seamlessly, and in the event that a domain user has an interactive session running for more than 24 hours without supplying a password, the user will (at most) get the "Windows need your current
  credentials" popup balloon from the system tray when renewal lifetime is exceeded (just like when ticket validation fails due to password change).
  Is this theory correct?
  I just wan't to make sure that I cause as little disruption from a user perspective as possible.

  Renewable TGTs
  When tickets are renewable, session keys are refreshed periodically without issuing a completely new ticket. If Kerberos policy permits renewable
  tickets, the KDC sets a RENEWABLE flag in every ticket it issues and sets two expiration times in the ticket. One expiration time limits the life of the current instance of the ticket; the second expiration time sets a limit on the cumulative lifetime of all
  instances of the ticket.
  The expiration time for the current instance of the ticket is held in the End Time field. As with non-renewable tickets, the value in the End Time
  field equals the value in the Start Time field plus the value of the maximum ticket life specified by Kerberos policy. A client holding a renewable ticket must send it—presenting a fresh authenticator as well—to the KDC for renewal before the end time is reached.
  When the KDC receives a ticket for renewal, it checks the value of a second expiration time held in the Renew Till field. This value is set when the ticket is first issued. It equals the value in the tickets Start Time field plus the value of the maximum cumulative
  ticket life specified by Kerberos policy. When the KDC renews the ticket, it checks to determine if the renew-till time has not yet arrived. If it has not, the KDC issues a new instance of the ticket with a later end time and a new session key.
  This means that administrators can set Kerberos policy so that tickets must be renewed at relatively short intervals—every day, for example. When
  tickets are renewed, a new session key is issued, minimizing the value of a compromised key. Administrators can also set cumulative ticket life for a relatively long period—one week or one month, for example. At the end of that time, the ticket expires and
  is no longer valid forrenewal."
  Source :
  https://social.technet.microsoft.com/Forums/windowsserver/en-US/e0c6a401-1609-47c9-8f1c-6437b98bef2a/how-does-kerberos-ticket-or-tgt-get-renewed-or-refreshed?forum=winserversecurity
  Regards,
  Biswajit
  MCTS, MCP 2003,MCSA 2003, MCSA:M 2003, CCNA, Enterprise Admin, ITIL F 2011
  Blog:
    Script Gallary:
    LinkedIn:
  Note: Disclaimer: This posting is provided & with no warranties or guarantees and confers no rights..

• HT1893 I just bought a MAC and can't figure out how to use the scan feature on my RX580 HP printer.  Can anyone tell me where to find this?  This used to be an option that was obvious under programs with my Dell.  Please someone help!

  I need some help!  I was able to download my HP printer software on to my Macbook Pro, but cannot find the Scan feature on the computer to be able to scan a document.  If someone could LMK what I need to do, or where I need to look to find this I would appreciate it!

  That would be a function of the driver that came with the printer. Make sure you have the latest driver appropriate to your system, either from HP or:
  Printer and Scanner software available for download:
  http://support.apple.com/kb/HT3669?viewlocale=en_US

• Hello! pleas help me ;) Question: how to export Project (slide show) from Iphoto (iphone) to desktop (windows)? Second - I export Procejct to Icloud - where I find this?

  Hello!
  Pleas help me!
  Problem: How to export Project (slide show) from IPhoto (Iphone) to other computer with windows?
  Second: How to save this project in Iphone?
  Next: I export this Project to ICloud. Where I will find this?
  regards
  Jerry

  Hi jerryj69,
  Welcome to the Support Communities!
  The link below to the iPhoto for iOS manual covers many of these topics. 
  iPhoto Help: Ways to share photos
  http://help.apple.com/iphoto/iphone/2.0/#blnk7d8f763e
  Ways to share photos
  Using iPhoto on your device, you can share your photos in many ways:
  Send photos to other devices
  Beam photos, albums, events, journals, and slideshows (send wirelessly) from your device to another iOS device with iPhoto installed. Beaming shares photos in full resolution.
  If you have a device that supports AirDrop, you can send photos wirelessly to other iOS devices that use AirDrop. You can use AirDrop to share photos, albums, events, journals, and slideshows. AirDrop shares photos in full resolution.
  If you have an iCloud account and you’ve set up My Photo Stream, photos you save to the Camera Roll are sent to all of your devices.
  Use photos in other apps on your device
  Send your photos to other apps installed on your device, including iMovie and other iPhoto-supported apps.
  Use your photos in any app by saving them to the Camera Roll.
  Send photos to your computer
  Import photos directly into iPhoto or Aperture on your computer.
  Save photos to your computer using iTunes.
  Share photos on the web
  Post photos to your Twitter, Flickr, or Facebook accounts directly from iPhoto. You can add comments when you post photos using iPhoto.
  Create a web journal with your photos and publish your journal as a webpage using your iCloud account.
  Create a slideshow with your photos and publish your sllideshow as a webpage using your iCloud account.
  Email, display, and print photos
  Send an email with your photos.
  Share photos using the Messages app on your device.
  Present your photos as a slideshow with music and transition effects.
  View photos on an external display using an HDMI cable adapter or on a TV using AirPlay and Apple TV.
  Print photos from your device to a printer that supports AirPrint. Tap > Print and select a printer.
  Create books of your photos and order professionally printed and bound copies of them.
  Order professional-quality prints, and have them delivered to an address you specify.
  Cheers,
  - Judy

• Where to find default Port of message server ID

  Hi all:
        Would you please tell me where and how to find default Port of message server ID?
       Thank you very ,much!!!

  Try this out if it works for you.
  http://HostName:PortNo/sap/monitoring/SystemInfo
  http://HostName:PortNo/monitoring/SystemInfo
  Regards
  Praveen

• Does anyone know where to find this????

  Does anyone know where to find a desk like the one in this video?
  http://www.youtube.com/watch?v=jfnSqLzUzfM
  Fast Forward To: 9:22

  It's in your Keychain on the computer you usually use to connect to your network - the "kind" will be "AirPort Network Password".
  Your Keychain can be opened by using the Keychain Access program. It is in your Utilities Folder.
  Open Keychain Access, and type airport in the search field. You will see a number of entries. Choose the one with the name of your wireless network, open it, and check the box next to "show password". Before it reveals itself you will be asked for your login password - the one you use to log in to your MacBook.
  The network password will appear in the box.
  Quit Keychain Access.

• My phone locked and i keyed in the number to release it, but it needs now a password for the network how do i find this

  my phone froze, so i restarted it with the pin number, but now it needs further info and needs a password for the network . how do I retrieve this password?

  In needs a password for WHAT network? If you're talking about a WiFi network, you'll have to ask whoever owns the network. We have no way of knowing.

• Where to find out my outgoing SMTP server name?

  Hi:
  I am trying to setup email notification method on OEM Grid Control, but what's the value for my SMTP server and port number , How can I find out?
  I am using OUTLOOK .
  Thanks for all the help.

  You will find it in the Email Account. Select Tools > Email account > View or Change Existing Accounts. Select and Open the email acoount and see it under Server Information.

• Where to find this log?

  We did something and the defaultTrace.trc tells:
  <b>An error log with ID [0003BA68FF7E0058000000A200006631000434ED4644FA13
  is created.</b>
  However, where to locate this error log?
  Points guaranteed. Thanks!

  Hi Jennifer,
  Check in the /usr/sap/<SID>/DEVBMG<INSTANCE#>/log.
  or
  1.if u r using windows search with the file name
  Regards
  Gangadhar
  **points always welcomed me to reply********
  Message was edited by:
          gangadhar hm

• Where to find this jar file

  hi,
  while building sample code i am getting jar not found.
  Where can i find this jar file <b>"bc.rf.repository.service.appproperties_api.jar"</b>
  thnks in advance

  hi
  it would be of gr8 help if u can forward the jar file to me also.
  my id is [email protected]
  thnks in advance
  Regards,
  Ranga