on 04-18-2018 8:48 PM
Hi,
is there a solution for the old problem, that if the user doesn't use the log off button and close the entire browser tab or window?
The session ist already valid and another user on the same computer is able to access sensitive data.
br Patrick
Hi Patrick,
Note ##1717945 Portal Logoff Does Not Logoff the Backend When Using HTTP Security Session Management is the right solution for your concern. From certain perspective that, to close browser window to invalidate the session would be not correct way to do so as session sometimes will not be terminated as expected which affected by SRA(Session release agent).
Regards,
Herman
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Patrick,
Please follow Note 1660720 - Session remains open after the logoff on enterprise portal (troubleshooting using httpwatch). To attach trace here , we will be able to see if SRA will work fine or not upon closing the browser window.
Regards,
Herman
It is hard to answer once we don't have your Component info. However, see the notes below: ##1717945 Portal Logoff Does Not Logoff the Backend When Using HTTP Security Session Management There is also many patches to deal with this issue.
Regards.
Fabio Sarmento
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
74 | |
9 | |
7 | |
6 | |
6 | |
6 | |
6 | |
6 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.