Win7, Kerberos, VPN, TGT & ST Lifetime domain default, smartcard
Users works on a corporate site during day and shut their laptopcover when they go home (sleep-mode).
When home, they open their laptop and are presented with the CTRL-ALT-DEL screen. They use their smartcard, and logon with cached credentials. Next, they start the VPN application and create a connection back to the corporate network. However, when the VPN is set-up and they try to use their applications they left open in the taskbar when they went home, for the various applications a logon-box is presented.
Investigation led us to the fact that the Kerberos Service Tickets have expired and need to be renewed. I've also seen situations (lab) where only the TicketGrantingTicket is left in the authenticationstore, and the ServiceTickets are purged?
Have any of you run into this situation, and what solution did you apply? Can someone explain what is the default behaviour, regarding kerberos tickets, in such a situation?
Thanks in advance for any insights
Todas las respuestas
According to your description, I suggest to contact this forum for further help:
The reason why we recommend posting appropriately is you will get the most qualified pool of respondents, and other partners who read the forums regularly can either share their knowledge or learn from your interaction with us.
Thank you for your understanding.
TechNet Community Support
- Editado Leo HuangMicrosoft contingent staff, Moderator jueves, 23 de febrero de 2012 6:02