Users Connect with Old Credentials

Problem: A user changes password in the backend security system, but can still authenticate with the previous password when connecting to Unwired Server.

Description: Unwired Server securely caches authenticated login credentials (1 hour by default), so that subsequent connection requests using the same credentials are not sent to the underlying security provider until the login cache timeout is reached. However, if the same user uses changed credentials, the authentication request us sent to the underlying security provider. The authorization outcome is not cached and always delegated to the security provider in the security configuration.

Solution: To prevent caching of login credentials or reduce the cache period, decrease the default login cache timeout by changing the loginCacheTimeout=60 property in <SUP_HOMW>/Servers/UnwiredServer/Repository/Instance/com/sybase/djc/security/SecurityDomain/default.properties. Repeat this change on all server nodes in the cluster.

Parent topic: Server Tier Administration Issues
Related tasks
Error in Listing Devices and ADMIN_WEBSERVICE_INVOCATION_ERROR in Agent.log
Unexpected Listener Startup or Connection Errors
AuthorizationException Displays Instead of Status
Related reference
Server List Not Retrieved
Unwired Server Fails to Start
Starting or Restarting a Remote Server from Sybase Control Center Fails
Port Conflict Issues
Refreshing Server Configuration Displays Only Partial Updates
Increasing Messaging Queue Counts Degrades Performance
Saving Server Configuration Fails Due to Certificate Validation Error