Why are SSO authenticated users logged out?

3
We are using SSO (Kerberos) but I've just witnessed an active user being logged out with the message 'Invalid session' Any thoughts on why this occured, the log doesn't show anything strange whatsover
asked
4 answers
3

All sessions will expire after an certain amount of time, this is hard-coded in the XAS. However, as long as the user is active in the browser, keep-alive requests will be send.

Note that SSO does not influence the session behavior of the XAS, it only replaces the login process.

answered
2

This usually happens when the same user logs in on a different browser or computer; this kills the old session with an 'Invalid session' message.

answered
1

Yeah this I know but I've witnessed multiple logouts by users that were actively using the application.

The log only shows that the X-as is reusing the old session but doesn't explain to us why...

answered
0

New things have to light; the problem is 'IE 8 only'.....

answered