SP 2010 FBA: Logging out when closing the browser works fine but it broke the Session Security Token Expiration
-
segunda-feira, 30 de julho de 2012 09:47
Hi,
As per the below link we can make either 'Logging out when closing the browser' or 'Session Security Token Expiration' to work.
I am already using the 'Session Security Token Expiration' to automatically sign out after a given time. This works great.
I also have the requirement to logout when closing the browser along with Session Security Token Expiration.
So I have added the IsPersistent = false line just after the ReissueCookie = true as you have mentioned.
Now what happened was 'Logging out when closing the browser' works fine but it broke the Session Security Token Expiration and it never expires.
Do you have a solution for this?
Thanks,
Arshath
Todas as Respostas
-
quarta-feira, 1 de agosto de 2012 09:34Moderador
Thanks for sharing the post.
I’m trying involve someone familiar with this topic to further look at this issue.
Thanks,
Qiao Wei
TechNet Community Support
-
quarta-feira, 1 de agosto de 2012 09:44
Hi Qiao,
Thanks and expecting your support on this.
Thanks,
Arshath
L. Arshath
-
sexta-feira, 3 de agosto de 2012 22:00
Hello Arshath,
To ensure the user session is no longer valid after browser is closed is use Session cookie instead of persist cookie. Please see the following link:
http://msdn.microsoft.com/en-us/library/hh147183.aspx
$sts = Get-SPSecurityTokenServiceConfig
$sts.UseSessionCookies = $true
$sts.Update()
iisresetthanks,
Amy
- Marcado como Resposta Qiao WeiMicrosoft Contingent Staff, Moderator segunda-feira, 6 de agosto de 2012 10:12
