Submitting forms on the support site are temporary unavailable for schedule maintenance. If you need immediate assistance please contact technical support. We apologize for the inconvenience.
Permissions not updated in Web Interface for group changes
Description
When a user is added to or removed from a group the permissions do not reflect within ActiveRoles Server Web Interface but show up properly in the MMC console.
Cause
This is due to an issue with Microsoft IIS. When you logon to ARS WI, IIS performs impersonation (http://msdn.microsoft.com/en-us/library/aa292118(v=vs.71).aspx). For performance purposes IIS caches this information. When you perform logout in ARS WI in fact you simply clear identity cache of IE but this does not clear cached identity on IIS side. As result: when you try to logon again IIS uses already cached identity. In this case token groups is not rebuilt and from this perspective cached identity is still member of group.
Resolution
WORKAROUND:
Restart the ActiveRoles Server Application Pool in IIS
Your Request will be reviewed by our technical reviewer team and, if approved, will be added as a Topic in our Knowledgebase.
Recommended Content
Product(s):
Active Roles
Topic(s):
Technical Solutions
Article History:
Created on: 9/29/2011 Last Update on: 5/7/2023
Thank you for your feedback for Topic Request
Your Request will be reviewed by our technical reviewer team and, if approved, will be added as a Topic in our Knowledgebase.
Welcome to One Identity Support
You can find online support help for*product* on an affiliate support site. Click continue to be directed to the correct support content and assistance for *product*.
The One Identity Portal no longer supports IE8, 9, & 10 and it is recommended to upgrade your browser to the latest version of Internet Explorer or Chrome.