Max renewable lifetime issues
Tiago Elvas
tiagoelvas at gmail.com
Wed Mar 13 11:38:24 EDT 2013
Thanks a lot Matt! That solved my problem in the linux client! I was
missing the "modprinc -maxlife 14hours krbtgt/[REALM_in_CAPS]"
Let's hope someone can help me with Windows client issue.
Best regards,
Tiago
On Wed, Mar 13, 2013 at 4:11 PM, Matt Garman <matthew.garman at gmail.com>wrote:
> On Wed, Mar 13, 2013 at 4:47 AM, Tiago Elvas <tiagoelvas at gmail.com> wrote:
> > I am having a problem in my system which I do not understand why it's
> > happening.
> > Firstly, I have a KDC running on a RedHat 5.7 machine. I have the
> parameter
> > maximum_renewable_life as 5000days in kdc.conf and krb5.conf. For each
> user
> > I have added, I also configured as 5000days max_renewable_life.
> > However, I am experiencing two different situations:
> >
> > 1. In Linux clients, I only have 1000days as max_renewable_life.
> > 2. In windows clients (kerberos for windows), I am getting only 30
> > days..!?
> >
> > Does anybody know what is causing this?
>
> I don't any any experience with Kerberos on Windows. But I did face a
> similar problem on the Linux side. The following ServerFault question
> was immensely helpful to me:
>
>
> http://serverfault.com/questions/132123/how-to-change-the-kerberos-default-ticket-lifetime
>
> -Matt
>
More information about the Kerberos
mailing list