The Expiration Policy of Authentication Tokens Has Changed in Resolution 4.0 (302171)
The information in this article applies to:
This article was previously published under Q302171 SUMMARY
In versions of Resolution earlier than 4.0, the expiration time of an authentication token is calculated based on the last access by the user. In other words, as long as a user is actively accessing the Resolution Server, the token never expires.
However, in Resolution 4.0, this policy has changed. The token expiration is calculated based upon the initial logon time of a user versus the last time the Resolution Server was accessed by a user. Token expiration always occurs a certain amount of time from the initial logon, regardless of how frequently the user is accessing the system. The amount of time is configurable through the Server Configuration Application (SCA), but it will not be extended by frequent user access.
| Modification Type: | Major | Last Reviewed: | 11/12/2001 |
|---|
| Keywords: | kbDSupport kbinfo KB302171 |
|---|
|