using AD component on UCS 4.4.8, I have set the TGT lifetime to 10 days (up from the default 1 day) via UCS template for smb.conf but the host principals are still getting a 1 day lifetime (as seen for example when logging into a host via kerberized ssh).
How can I get also the host principals lifetime up to 10 days?
Unfortunately, there is no UCR variable for this solution. However, a bug has already been created for this.
Thanks for your request.
Update:
In Heimdal, it can be configured by adding ticket_lifetime to /etc/krb5.conf
under libdefaults
[libdefaults]
ticket_lifetime = 20h
In samba, this line has to be inserted into sam.ldb
kdc:user ticket lifetime = 20