SP 2.4.2 Sessions destroyed in less than a second when using Novell Access Manager 3.1

Lee Evans Lee.Evans at symphonysv.com
Wed Oct 26 02:25:24 BST 2011


Scott,

    I went and looked at the shibd.log file again and I see the following :-

2011-10-18 23:12:08 INFO Shibboleth.SessionCache [1]: new session created: ID (_600bb8b0ee7c0816cec5c520e2dad677) IdP (https://idp.myappglobal.net/nidp/saml2/metadata) Protocol(urn:oasis:names:tc:SAML:2.0:protocol) Address (200.222.212.4)
2011-10-18 23:12:09 INFO Shibboleth.SessionCache [1]: session timed out (ID: _600bb8b0ee7c0816cec5c520e2dad677)
2011-10-18 23:12:09 INFO Shibboleth.SessionCache [1]: removed session (_600bb8b0ee7c0816cec5c520e2dad677)

    The timeout is set to 3600 how can it be timing out, and the only difference between this application definition that doesn't work and ones that do on the same environment is that the IDP does not provide the SessionNotOnOrAfter in this case.

    I am going to try 2.4.3 and see what happens.

    Thanks.

Lee Evans


-----Original Message-----
From: users-bounces at shibboleth.net [mailto:users-bounces at shibboleth.net] On Behalf Of Cantor, Scott
Sent: Tuesday, October 25, 2011 1:08 PM
To: users at shibboleth.net
Subject: Re: SP 2.4.2 Sessions destroyed in less than a second when using Novell Access Manager 3.1

On 10/25/11 1:57 PM, "Lee Evans" <Lee.Evans at symphonysv.com> wrote:
>
>In 2.4.2 we are seeing that the Shib Session is created and destroyed
>within 1 second.
>
>Is this a bug in 2.4.2 or is there a new configuration item required ? i
>have looked but could not find it.

The only bug I know of is setting the timeout to 0 when default session
cache eviction settings are used. Otherwise it behaves the same as it used
to.

More logging would be needed, it isn't just destroying them without some
sign of a reason.

-- Scott

--
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net

NOTICE TO RECIPIENT: THIS E-MAIL (INCLUDING ANY ATTACHMENTS) IS MEANT FOR ONLY THE INTENDED RECIPIENT OF THE TRANSMISSION, MAY CONTAIN CONFIDENTIAL INFORMATION, AND IS PROTECTED BY LAW. IF YOU RECEIVED THIS E-MAIL IN ERROR, PLEASE IMMEDIATELY NOTIFY THE SENDER OF THE ERROR BY RETURN E-MAIL, DELETE THIS COMMUNICATION AND SHRED ANY ATTACHMENTS. UNAUTHORIZED REVIEW, USE, DISSEMINATION, DISTRIBUTION, COPYING OR TAKING OF ANY ACTION BASED ON THIS COMMUNICATION IS STRICTLY PROHIBITED.


More information about the users mailing list