Authentication Policy
Authentication policy regulates ticket lifetimes. You can set authentication policy for the registry as a whole, using the dcecp registry modify command, and for individual accounts by using the dcecp account modify command. The authentication policies you can set are described in the following subtopics.
Note: Be aware that, in addition to the authentication policies described in this topic, you can also control preauthentication policy for a principal by attaching an instance of the pre_auth_req ERA to the principal. See Creating and Maintaining Principals, Groups, and Organizations for a general discussion of preauthentication and information on preauthentication administration.
More: