Certificate of ISE chain is not the confidence of Clients WLAN

Similar Questions

• Updated blackBerry Smartphones to BBM v7.0.1.23 and receive now "you are trying to open a secure connection, but the server certificate chain is not valid.

  BBM v7.0.1.23

  BlackBerry 8530

  V5.0.0.459 smartphone (Platform 4.2.0.201)

  recently upgraded to BBM V7.0.1.23 and now receive message repeated 'you try to open a secure connection, but the server certificate chain is not valid.

  battery pulled, continues to occur.

  I would appreciate your help to resolve.

  This was bugs me for a few weeks now, after update BBM to try BBM voice

  see article ID KB33968 knowledge base

  http://BTSC.webapps.BlackBerry.com/BTSC/ViewDocument.do;JSESSIONID=39AB1AF3BC35AC4B221973537775C2C7?...

  . . . I tried to insert a link shortcut to the URL, but it was not allowed.

  Looks like a fudge like BB issue a correction. I have not tried myself but is told by the way, but I'll do it later today.

• RIM: error barsigner: certificate chain could not be found for: autor. Author must refer to one

  AFTER THE EXECUTION OF:

  BlackBerry-sign - keystore XXXX.p12 - storepass xxxx App.bar autor

  GETTING:

  error barsigner: certificate chain could not be found for: autor.  Author must refer to one
  valid key KeyStore containing a private key entry and the corresponding public key
  certificate chain.

  Final slash file must have:

  -RDK. SF
  -RDK. EC
  -MANIFESTO. MF
  -AURTHOR. SF
  -AUTHOR. EC

  My:

  -RDK. SF
  -RDK. EC
  -MANIFESTO. MF

  Any help?

  Author's misspelling - should be author

• Certificate error "the name on the security certificate is invalid or does not match the site name.

  When my computer after starting the antivirus and Skype loaded,.

  I recently started to get warning of security box appear. The attachments show you what I see.

  I am told "the name on the security certificate is invalid or does not match the name of the site"

  Whether I click Yes to "do you want to proceed", nothing happens.

  How to make this security alert disappear from the start-up procedure?

  Thanks for your advice

  Marty783

  

  Thank you PML

  Problem is now solved.
  Was a corrupted version of IE6, which, when updated to IE8, fixed the problem.

• Microsoft It - fix diagnose and repair Windows and problems would not install on my computer. He said the chain was not in the right format. Clues?

  I installed Microsoft Fix It on my computer (MSXP). The diagnosis and repair of the Windows files and problems would not install on my computer. He said the chain was not in the right format.  Clues?

  Hi Kathryn1713,

  ·         You are not able to run the Microsoft Fixit tool?

  If so, you can post your query on the Forums of Microsoft Fixit. Please see the following link for the same.

  Microsoft Fix Center - NO support general questions Forum

• ISE Application does not start after the upgrade to version 1.2

  Hello

  We have a customer who uses a device of ISE-3315 hardware running 1.1.4.218 Patch1. He had to take 1.2 Patch 2 to support iOS7. There is no secondary device so it is a stand-alone deployment.

  We did the upgrade according to Cisco documents (backup, patch the current to the last patch, perform the upgrade). It all seems to have gone through successfully. I can access the CLI through SSH, but application services will not start. I tried to stop and start services (application stop ise / ise to start the app), but I get the following message:

  LSE / ise to start the admin application #.

  Waiting up to 20 seconds to lock: APP_START for complete

  Database is always blocked by lock: APP_START. Abandonment. Please try again later

  % Error: another process ISE DB (APP_START) is current, cannot perform to start the Application at this time

  I waited for half a day, but it remained the same. Also configure the controls as application or application config-reset do not work. restart the ISE has failed as well.

  A someone has encountered this problem and solved? My next idea would be a pure re install 1.2 ISE and then restore the backup.

  Kind regards

  Patrick

  I had a problem with the upgrade of MnT DB for an ISE 1.1 to 1.2 upgrade ISE.  It got stuck for hours.  On appeal by TAC, that is exactly what they advised.  Install a fresh node and restore the backup.  It converts it to 1.2 during restoration.

  The TAC engineer, I rubbed also admitted that they had very mixed in the 1.1-> 1.2 upgrade so that they were recommending new installation and restore the configuration.

• Firefox can't analyze my certificate while IE can. I imported my this at once, IE is fine, Firefox says that the certification is valid for the period of INQUIRY only, not the DNS name

  Details: - created a CA with PfSense - created server SSL certificates imported from my own servers (ESX, PfSense, email,...) -the authority of certification in Internet Explorer as a certification authority root of new trust - connect to my server with their local DNS names and receive the page without warning - any HQ in Firefox as a new authority - to connect to my server using the DNS name - a error message: certificate is valid only for 172.31.1.20 (the IP address of the server) - to connect to my server using Firefox and the IP address and receive the page without warning

  The AC is very good because it is used by IE and Firefox and even complaining, Firefox don't doubt the authority. The server certificate does not include the name, and can find it. It is true that when I created the certif, I added an additional field with the IP address. The certificate should be valid for both the DNS name and IP address. When I try to connect to the server with IE using the IP address, now it's THE who complains that the certificate is valid for the name :-)

  What should I do for Firefox to accept my certificate in his name and validate with the CA instead of making several exceptions for everything?

  This is the certificate sent by the server:

  BEGIN CERTIFICATE-----

  MIIF5jCCA86gAwIBAgIBBzANBgkqhkiG9w0BAQsFADCBgTELMAkGA1UEBhMCQ0Ex DzANBgNVBAgTBlF1ZWJlYzERMA8GA1UEBxMITW9udHJlYWwxDTALBgNVBAoTBEhv bWUxGzAZBgkqhkiG9w0BCQEWDGFkbWluQGpiLmxhbjESMBAGA1UEAxQJSkJfTGFu X0NBMQ4wDAYDVQQLEwVJVFNlYzAeFw0xNjExMTIwMjI1MjRaFw0yNjExMTAwMjI1 MjRaMIGCMQswCQYDVQQGEwJDQTEPMA0GA1UECBMGUXVlYmVjMREwDwYDVQQHEwhN b250cmVhbDENMAsGA1UEChMESG9tZTEbMBkGCSqGSIb3DQEJARYMYWRtaW5AamIu bGFuMRMwEQYDVQQDEwplc3guamIubGFuMQ4wDAYDVQQLEwVJVFNlYzCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAMWoRcxHoBjR2rKOPAI/dtpWlTiqOGDg zZZWJ6n24ZYUfh9L6vUmzqajfAbj6 + fndzKahb69PLi + tsnt39yGsKWkXUd3y7Wq 5PkaGSqi/mJKB7/H0qL4Ig2FK9/uK9QGK019NvDN1jnLgF6MoNAIZEOVjqalpnXD O8Eu + vaKPsHbvNziNj7uQR8CdcMU9lEF6gcmFu8xOrukb3ocpyJ307PHqx3AlrU0 sBuit21glineB9XKMyBaon9D3mrNUXmvHy3xcBvHPwcgqnNDKd7CZwdfaXw4Hb4i t7BYgSsn66UxPcrDvoho9aDbXnjmOuPCo/FMsZxfr9ETZyGIllsXE2UCAwEAAaOC AWQwggFgMAkGA1UdEwQCMAAwEQYJYIZIAYb4QgEBBAQDAgZAMDMGCWCGSAGG BEI DQQmFiRPcGVuU1NMIEdlbmVyYXRlZCBTZXJ2ZXIgQ2VydGlmaWNhdGUwHQYDVR0O BBYEFEILwkf/4I50YT + fZ/2wcETS6CBVMIGuBgNVHSMEgaYwgaOAFEgmUROxoVJM txyWvypJ4wcF8B2RoYGHpIGEMIGBMQswCQYDVQQGEwJDQTEPMA0GA1UECBMGUXVl YmVjMREwDwYDVQQHEwhNb250cmVhbDENMAsGA1UEChMESG9tZTEbMBkGCSqGSIb3 DQEJARYMYWRtaW5AamIubGFuMRIwEAYDVQQDFAlKQl9MYW5fQ0ExDjAMBgNVBAsT BUlUU2VjggEAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQgCAjALBgNVHQ8E BAMCBaAwDwYDVR0RBAgwBocErB8BFDANBgkqhkiG9w0BAQsFAAOCAgEABCFChNXJ ACISI + 7hNbpiwIsjpDB0fLKB/9sPXC1uiwzGv7o/fkImYPJzQcKP0a3V6elX4kd7 x1poYAfawVIpKJgwzgEWnMJADgPKVMymkxBr3Qlq + 3oAiC4pTdI79GKaZKshxANS 7OBoklRDYWStHnCdw96IWuu6Ih2mbsbRVUFIJnHPHpCFS1J45tLYWoxPL/L1uX3v /Pz8SollYXtZ +. uVhdkkzJcHcEsZjvBe3eMmxm93l7Cy/5kCDf2 + kx67weNRrxbFt VaEyFCypCJlJn4Gj17y0JnhPUN1/h7Ck4XcTLX28 + Ab2Ls9/rXnXMQvkKcrRhvyT CV4XJ756hap/zT + KJJzY8 + T5ggdkKlcbZsvvgVSuNNv1aSQmR + bbF5ry23oszXVO FaEEAtcofaHa5MMebNNWrz4o/qYuPGBnVq3NmxiNNKm + / Ed5ky4AdkXT7Ny11mgA C2DzGahyXfbfGFa21ig/R0NAxkP00TXWiuSE/7 b/EGe9qNDB + WF7Qb5I9U6EoWYZ EEmE8G/43ClaZCorJJN7iZwwMx2iQJgyuea hy9hgXU5GjmXmrpqmtvyGxrywalcXPzvFOs + aSXf1H2tLSMc9n3LH8g0lDgpcC6P484ef1cmG3/hVD5QLWyjblMnF0XjbMyij5Hj eTrPLTwW8AYjoIz0DZRoVPxpdz/o =

  CERTIFICATE OF END-

  This is the certificate of the CA that signed it

  BEGIN CERTIFICATE-----

  MIIGbjCCBFagAwIBAgIBADANBgkqhkiG9w0BAQsFADCBgTELMAkGA1UEBhMCQ0Ex DzANBgNVBAgTBlF1ZWJlYzERMA8GA1UEBxMITW9udHJlYWwxDTALBgNVBAoTBEhv bWUxGzAZBgkqhkiG9w0BCQEWDGFkbWluQGpiLmxhbjESMBAGA1UEAxQJSkJfTGFu X0NBMQ4wDAYDVQQLEwVJVFNlYzAeFw0xNjExMDYxMTQzNTJaFw0zNjExMDExMTQz NTJaMIGBMQswCQYDVQQGEwJDQTEPMA0GA1UECBMGUXVlYmVjMREwDwYDVQQHEwhN b250cmVhbDENMAsGA1UEChMESG9tZTEbMBkGCSqGSIb3DQEJARYMYWRtaW5AamIu bGFuMRIwEAYDVQQDFAlKQl9MYW5fQ0ExDjAMBgNVBAsTBUlUU2VjMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtRfmJ8HhxD6OeBSTdiK36DF/Gw7HmOIO CN9LktUCcnXZfsbkyPwGq8AtLTURfYU1VKHw066g0XD0hEbFEaYIWvVKijiqaPZg Pc / pIAj + M7vzojeCnv6QiRTcC9q5rY9 + Ff7MuTkWKEPzjuXpHd + IoS4To3sVZgsy YcxrdRndcirxm6aFjGXIYaImPm3hLuMteSagacsjduGEDOpJ5hJoMIIX4kHE/x8J DFBvlllXIGiOgCHU + 8hcN1IadNFqQcWA3eFB5SgLPFxOOmR4xpB1LsrESC4Zgk/E XmZYBCsYHzg58Cq6r4xuwckutcd5Gjo9ujaafCfAlUFHFJxqLxyy + N0nd3P + i5Kd zPpwpyIAzOCPeZvM2chspspl3pER + RlqZODLoU3gSAz4z + knxKxeyyiK8cttMHkV Di5veqSRIxYeYtJqu0asEaBiQ0ZpdqsNcQEU3rwzo6uoxxgvRr2Ujb6csr8CqhuA 2Sz0W1upgcpZhuL0VMTkMS8P8fgzZZeIU85v7drldXsvpjzaMwHdm/MKGewA0eCZ fUTI6V + uY9oaT9GH8MPzGWzB4oYb3sRgKgLkvWGckyHe3YVwUpb4z/MXRFB3bN/Z qxIyochY8pJMcJe2jrTw79Sf9FAR/txonPBAxuNtGLIdcL4ElGjlXPDXlQrI8XbI n/Abbs3iFHsCAwEAAaOB7jCB6zAdBgNVHQ4EFgQUSCZRE7GhUky3HJa/KknjBwXw HZEwga4GA1UdIwSBpjCBo4AUSCZRE7GhUky3HJa / KknjBwXwHZGhgYekgYQwgYEx CzAJBgNVBAYTAkNBMQ8wDQYDVQQIEwZRdWViZWMxETAPBgNVBAcTCE1vbnRyZWFs MQ0wCwYDVQQKEwRIb21lMRswGQYJKoZIhvcNAQkBFgxhZG1pbkBqYi5sYW4xEjAQ BgNVBAMUCUpCX0xhbl9DQTEOMAwGA1UECxMFSVRTZWOCAQAwDAYDVR0TBAUwAwEB /zALBgNVHQ8EBAMCAQYwDQYJKoZIhvcNAQELBQADggIBAHVLp0nsXNHjvcjWado0 v1M167gEv8SnLMzDRJ7rOwfQlG0JWIXgrMk + 9bLQixFPbClG2MzOGhq2gyXbTFEH PYLfOxRy5gsrYhBYKso4PNrP8ouBaedl / + huobFtd1SR4bNrZ5Be3crQkZhULmlv hSVWklOC + o0rdfPnDffDRtoWH1x1 / + ZRS0N0MSwXqeoQTEgu9CYRCEeLnidcdd1v e6XR + Qw2qLfPqBCKzCVNGZvpVjqakERxaLgWPqwixIQ4sdPjvtnUJxsUEo5hN + 6 / + os/HZ1iO3Bgi6DgAGToTSmsf5 + pI/z + o2FjDrDvbBhvf4FulvvOCsRBNkA5BK NgisFXP / FN3WlkrbM1OZjWIan1phQAw5mDLfqwxJE + BuedK1HqLRNTay9eOGSRSu TRIi26fwwMAdsPnDj3X7/aUCWslVrvZPRmsIOgykLuHlCgYD99mpzF0v + t8y05iE V3115CCve + qFHH52j078jxo1aKyfQTnRGvdGehWI77Pd/l9CMgNJ7K0ZRx6RUoEV 9CMH6kgqagkXU7eT2CXszxrGHAgybnNaJ/z4BjxDme0TH3bgLc4AOIiP8doe7KlJ lYvrG8UMtCkL1jhYFX4Rz/BH5yte7aqzwBVUZrcmvM2gU9ZyPNaAfCDygCUMeMqt OWQEicvGZtRj2ZK6PKv5hk0a

  CERTIFICATE OF END-

  In Firefox, a list of other names of the non-empty object overrides and replaces the common name field. If you need to list all the relevant host names in the field of SAN in your certificate.

• DPS error App Builder could not the signed output file created because the certificates may be invalid

  Hello

  I work at the school and I use indesign dps for educational material. I generated folios of apple store and googleplay market.

  I loaded it to apple, but I did not charge for android.

  My problem is to create .p12 certificate and I used step by step this documant ().html http://helpx.adobe.com/digital-publishing-suite/kb/publishing-process-android-amazon-mobil)

  I have create this certificate with Terminal Server.

  

  I load this certificate to dps generator app and the on-screen display is here.

  

  My version of folios and dps is the same. I can do really I don't know, can you help me please?

  I build of Android Applications just fine on my end, it looks like a specific problem or a system account. Contact the Gold technical support.

• Certificate based with chaining of EAP authentication

  Hello world

  My question is about EAP - TLS and EAP chaining. I know that EAP - TLS is used for certificate based authentication. I think using EAP chaining which employees computer and user authentication. So if you use EAP - TLS with chaining EAP, this would mean that ISE will validate the computer certificate and user certificate? I do not know if there is something called user certificate. Not a guy from Microsoft.

  My second question is that it is a way we could use the certificate and the name of user and password for authentication at the same time?

  I would strongly appreciate an explanation or a reference document which could help to clarify my concept on this subject.

  Thank you

  Quesnel

  Yes, with EAP-chaining, you can make user and computer certificate authentication at the same time.

  Yes, you can also use EAP - TLS and PEAP/MSCHAPv2 authentication even in, what's special on EAP-chaining, and therefore requires anyconnect nam. When you set your anyconnect configuration, you will be asked if you wan't do user, computer, or user and machine authentication, and you will get two separate configuration settings, one for the user and the other for the machine and you can select any EAP method in those, they are not the same.

  http://www.Cisco.com/c/dam/en/us/solutions/collateral/enterprise/design-...

• NAC agent gives up pop client-side. I have chain.pem in the hand? What should do?

  I asked my client to the chain.pem file push all users active directory, but he said this does not work, attached is the screenshot of the pop-up window, what happens?

  I asked him to try chain.pem export of machine NAS/CASE GUI...

  and if doesn't work I asked him to try chain.pem export of machine NAM/CAM GUI...

  ? What mistakes or things he has to deal in the ACTIVE DIRECTORY Group Policy object? advice please...

  Keita,

  You just need to install the certificate root certification authority that signed the certificate of CASs. If the CASE certificate is self-signed, you just need CASE certificate and have that installed in the stores of the root of the client machines.

  Please check with your client is supported on its machines and how. Check on an affected machine to see if they have the certificate root in their store or not.

  HTH,

  Faisal

• Cisco ISE 1.2 and the ad group

  Hello

  I have Cisco ISE installed on my EXSi server for my test pilot. I added several ad groups at ISE as well.

  I created a condition of authorization policy, that is WIRELESS_DOT1X_USERS (see screenshot)
  Basically, I just replicate the default Wireless_802.1X and added Network Access: EapAuthentication, Equals, EAP - TLS.

  My problem is, I have been unable to join the wireless network, if I added my ad group to the authorization strategy (see screenshot). The user I is a member of WLAN USERS. If I removed the authorization policy group, the use is able to join the wireless network.

  I have attached the screenshot of ISE newspapers as well. I checked the ISE, AD/NPS, WLC, laptop computer time and date, and they are all in sync.

  I also have the WLC added as NPS client on my network.

  I checked the newspaper AD and I found it, it was the local management user WLCs trying to authenticate. It is supposed to be my wireless user Credential is not the WLC.

  It's the paper I received from the AD/NPS

  Access denied to user network policy server.

  Contact the server administrator to strategy network for more information.

  User:

  Security ID: NULL SID

  Account name: admin

  Domain account: AAENG

  Account name: AAENG\admin

  Client computer:

  Security ID: NULL SID

  Account name: -.

  Full account name: -.

  OS version: -.

  Called Station identifier: -.

  Calling the Station identifier: -.

  NAS:

  NAS IPv4 address: 172.28.255.42

  NAS IPv6 address: -.

  NAS identifier: RK3W5508-01

  NAS Port Type: -.

  NAS Port:                              -

  RADIUS client:

  Friendly name of client: RK3W5508-01

  The client IP address: 172.28.255.42

  Information about authentication:

  Connection request policy name: Windows authentication for all users use

  The network policy name: -.

  Authentication provider: Windows

  Authentication server: WIN - RSTMIMB7F45.aaeng.local

  Authentication type: PAP

  EAP Type:                              -

  Identifier for account: -.

  Results of logging: Accounting Information was written in the local log file.

  Reason code: 16

  Reason: Authentication failed due to incompatibility of user credentials. The provided username is not mapped to an existing user account or the password is incorrect.

  Hello

  The problem is with what ISE name, it's choosing to search of the AD. If you look in the ISE newspapers down, you'll see the username that use ISE (firstname, lastname) to search for the AD.

  In your certificate template see what attribute containst name AD (possibly the dns name or email or the name of principle of RFC 822 NT), go to your profile to authenticate cerificate and use this attribute for the user name.

  Thank you

  Tarik Admani
  * Please note the useful messages *.

• Firefox won't load is not the version of the graphic text of a website

  I see more and more pages on several site where firefox will load only the text version of the page, not the graphics. I won't be able to click a button and get a reaction. Even on support of mozilla page button to click to contains the wouldn't do anything. I had to simply press the Enter key to get it to do anything. I have reset FF default values and also load it in safe mode and the same things happening.

  the link below says "try these manual steps", but clicking on it does nothing.

  Hi soboku, ESET filtering characteristic can be adjusted to avoid problems with secure sites, either by disabling the filtering of SSL connections or by importing certificate ESET in Firefox. I don't know if you have already tried these things, but if not, you can consult the manual for your version. I looked the other day, but don't know if yours is the same: https://support.mozilla.org/questions/1006414#answer-592501

• I can NOT connect my Facebook account to make Yahtzee can access my contacts. He said that Facebook is not configured on this phone. ??? I have also a certificate has expired and do NOT know how to get a certificate of update. ?  Please Help, I have NOT b

  I can NOT connect my Facebook account to make Yahtzee can access my contacts. He said that Facebook is not configured on this phone. ??? What this mean and how can I solve this problem? I have also a certificate has expired and do NOT know how to get a certificate of update. ?  Please Help, I have NOT been able to get help from any of these Issuea. Very frustrated. Please contact me by txt on my iPhone 352-257-9403 if possible. Thank you for your support

  iOS 9.2.1

  certificate is daily horoscope

  wwhat the devil is and why it has expired?

• When I try to access Microsoft, my Internet Security provider tells me that this is a site without certificate - seriously? Microsoft may not have a certificate?

  Very frustrated and get VERY annoyed the monopoly total Microsoft have my PC. The system they have is beyond a joke. To change the password sign - "for my own safety', I need to enter the last 4 digits of my cell phone - to receive a 'code' to continue. Sometimes I don't get a code - OR I get an error message! Seriously? I could get into Fort Knox easier! I can't access my pc when I turn it on until I have enter the password - I LIVES ON MY OWN - that is trying to access my pc - the goldfish? I need to log in - but Microsoft have totally taken over my computer and I can't cancel the password. When I try to access Microsoft, my Internet Security provider tells me that this is a site without certificate - seriously? Microsoft may not have a certificate?

  Hi RF R,.

  Frustrating indeed sounds and it looks to me that you have two step of checking enabled for your Microsoft Account. Here are some instructions on how to disable it:

  On the two-step verification - Windows help

  I hope this helps!
  David

• Analysis of chain to get the Timestamp, LV 2012 problem

  I have a VI I wrote in 2013 LV where it works very well.  But with the same VI in LV 2012SP1, analysis of string to get a Timestamp does not work.  Attached is the VI recorded in LV2012 SP1.

  Background:

  I work with an FPGA where I am synchronizing pulses using the clock of 40 MHz.  I connect these impulses in a file on my host PXI. To correlate the clock on the FPGA with a log file and real life someday, I named the file with a timestamp, and the meter 64-bit encoded hexadecimal string.  Now, I have a pretty good correlation between when the 64-bit against him and the time of day to facilitate the search of the data file.

  Now, I try to analyse the file name, so in my analysis of code I can reassociate the value 64 bits with the time of day using the string functions to separate the file name.  With a few regexes (which I've never used in real life before), I've broken down the chain and got the base time as a timestamp, and the counter value as a 64-bit integer.  The VI works very well in 2013 LV.

  But when I saved it to the LV 2012, analysis of string to get the timestamp fails.  No error, but the timestamp shows 19:00 12/31/1599 (I am GMT - 5).  I have no idea why.  A bug in the parsing of the string that was set in 2013 LV?

  Please run the attached VI in LV 2012.  Confirm if it fails for you.  Then open it in 2013 LV and see if it works for you.

  I am trying to make it work in LV 2012 because this project is locked in this version of LV for now.  I can probably do something to reorganize the time string to get something that will scan a digital time stamp if I have to.

  Hi Bill,

  Sorry to be a bit late on this point, I just came across this thread after the hunt for the CAR for a separate issue. The fix for 300375 CAR is what causes the difference in behavior between versions of LabVIEW. It appears on the list of known issues of LabVIEW 2013, although the description focuses more on the fixed number than other possible differences between the versions.

  The thoughts in this thread died on what happened in the difficulty. LabVIEW 2013 now pick up the string of year 2 or 4-digit number when you use the %y or %Y tags, respectively. Previously, the behavior was more forgiving in the year format, leading to incorrect behavior that you have observed strings of 4 digits in the year the %y tag. The original problem, you pointed out (2012 incorrectly string manipulation of tagged %y (2 digits) 2-digit year is precisely what has been fixed in the CAR.

  Regarding your strange result over the years with the tag %Y-2 digit, this is a limitation of the type of data Time Stamp itself. The year will always be converted to between 1600 and 3000. So no time extreme travel journaling. Yet.

  See you soon,.