-
logon:
-
visitors:
-
- Journalized Theme Copyright © 2002–2025 Mike Little.
Information about joeware mixed with wild and crazy opinions...
I just had to perform the yearly renew my Cert on my Smart Card for my MVP Source Code Access to the Windows OS. I also have a Smart Card Cert for work I have to renew yearly for authentication as well.
Something that annoys me is that everyone likes to use a one year period for Certs. I.E. You have to renew them once a year. Now this makes sense in the nice clean, we have Certs that last one year viewpoint. Security likes it, as I said, it is nice and clean and fits one of our major time marks… It is also a default in at least the Microsoft Certificate Authority systems.
What annoys me about it is that you need to renew PRIOR to its expiration. In general, you want to do this a bit in advance so you don’t have an issue that could cause you some sort of outage while it gets sorted out. No one wants a smart card that isn’t working as it is usually a pain to sort it out, possibly having to mail it somewhere, possibly having to drive somewhere. Being treated like an outcast the whole while…
So what do you do? You get your notification that you are going to expire maybe 45-60 days out from the actual expiration. At the one month mark you get another message and likely you think, well I better take care of this before I can’t or before I forget and so you do.
So now the problem or at least my annoyance… Say your initial Cert is issued end of August. So the next year you get your warnings in July time frame and you likely renew at the beginning of August. The next year you get your warnings in June and you likely renew at the beginning of July, etc etc etc…
Seems like using say 13 or 14 months for the expiration period would be nice, then you know, every year in the month of XXX you have to renew your Cert. Not get earlier and earlier every year.
Just saying…
…you have an iPhone or iPod Touch…
http://itunes.apple.com/us/app/active-directory-fourth-edition/id329336118?mt=8
I think I might get $.10 a copy for this…
So you likely have noticed some changes to the blog. I found a couple of WordPress plug-ins I liked and updated the theme to a more recent release of the same theme I had been using. I visualize some more changes coming but not sure what yet. On the positive side, in general, WordPress allows for very easy configuration. I added that visitors in motion globe in about 30 seconds. The joewear store was a little more involved as I had to tweak both the widget for a small issue I found in it when for whatever reason it did not pull the price from the store and to make it fit the theme properly. The color of the background of the thumbnail is annoying to me but I think that would involve making changes on the actual joewear store to correct. Anyway, I told cafepress to put everything on sale so it should all be more value minded now.
So now you can rate the posts, I do recommend it, that way I have a clue what you all think and it is easier than commenting. I also have a new plugin that allows you to highlight something and post on other social sites quickly if you so choose.
Back to the visitors in motion globe though… That is so cool. I saw it on another site and thought… I have to have it!
I am thinking about putting google adwords along the right side? Thoughts? I have always avoided ads but if I can figure out a way to not make them annoying, maybe I will see if it can useful to me.
joe
…after I don’t know how many years… I have dug the roller blades out of storage…
With as crappy as my health care insurance has been getting the last few years, this may not be such a brilliant idea…
If you make this, you will be craving it again very soon…
Summary
Ingredients
Directions
Plating
WARNING: Your house is going to smell so good and will stick around for hours so you may start gnawing on the end of a table or a cupboard or something… The sauce is about the best sauce I have ever had over rice…
I had someone ping me about an issue with maxValRange a few months ago and they mentioned that MSFT had changed some internal hard coded limits. I meant to go look into it but never found time. This was just posted on ActiveDir Org the last few days which makes it so I don’t have to go check the source code. 🙂
http://support.microsoft.com/kb/2009267
Hardcoded LDAP limitations have been introduced in Windows Server 2008 R2 and Windows Server 2008 to prevent overloading the domain controller. These limits overwrite the LDAP policy setting when the policy value should be higher.
LDAP setting maximum value (hardcoded) MaxReceiveBuffer 20971520 MaxPageSize 20000 MaxQueryDuration 1200 MaxTempTableSize 100000 MaxValRange 5000
[joeware – never stop exploring… :) is proudly powered by WordPress.]
