Maximum tolerance for computer clock synchronization This security setting determines the maximum time difference (in minutes) ...

Maximum tolerance for computer clock synchronization

This security setting determines the maximum time difference (in minutes) that Kerberos V5 tolerates between the time on the client clock and the time on the domain controller running Windows Server 2003 that provides Kerberos authentication.

To prevent "replay attacks," Kerberos V5 uses time stamps as part of its protocol definition. For time stamps to work properly, the clocks of the client and the domain controller need to be in sync as much as possible. In other words, both computers must be set to the same time and date. Because the clocks of two computers are often out of sync, administrators can use this policy to establish the maximum acceptable difference to Kerberos V5 between a client clock and domain controller clock. If the difference between a client clock and the domain controller clock is less than the maximum time difference that is specified in this policy, any time stamp that is used in a session between the two computers is considered to be authentic.

Important

This setting is not persistent on pre Vista platforms. If you configure this setting and then restart the computer, this setting reverts to the default value.

Default: 5 minutes.

Maximum sent bits per second at each interval, logging latest 60 samples at each interval defined in IntervalSeconds (second). ... Maximum size to which file is allowed to grow. It will be archived when it exceeds this size. Archived files have an extension ... Maximum size, in Kbytes, of media supported by this device. KBytes is interpreted as the number of bytes multiplied by 1000 ... Maximum system log size This security setting specifies the maximum size of the system event log, which has a theoretical ... Maximum tolerance for computer clock synchronization This security setting determines the maximum time difference (in minutes) ... MaxNumberOfPasswords specifies the number of passwords definable in the modem itself. If this feature is not supported, enter ... MaxRechargeTime indicates the maximum time, in minutes, to fully charge the battery. This property represents the time to ... May be one or more of the following: 0x00000001 - Fill. Fill files when pinning. 0x00000020 - PinForUser. Pin for the logged-on ... May be one or more of the following: 0x00000001 - FillSparse. Fill sparse files. 0x00000002 - SyncIn. Sync server changes ...