STATUS:
Change request # 438619 is fixed in SPP version 7.5, please upgrade to address this issue.
WORKAROUND:
1. Remove the "close expired sessions" flag on all Access Request Policies that have this enabled
- You can use the safeguard-ps module to run the following example script to disable the "close expired sessions" flag on all Access Request policies:
$arp = Get-SafeguardAccessPolicy ForEach ($i in $arp) { $policy = Get-SafeguardAccessPolicy -PolicyToGet $i $policy.AccessRequestProperties.TerminateExpiredSessions = $false $id = $policy.Id write-host $policy.Rolename write-host $policy.name invoke-safeguardmethod core put "AccessPolicies/$id" -Body $policy }
2. Reboot the Primary appliance.
3. You will need to close any Pending Password Reset requests:
- Using the SPP Web UI: Security Policy Management > Access Request Activity > Open Requests > In the search field click on the Search icon > Filter by State: Pending Password Reset and close these requests.
OR
- Using Safeguard-ps module and an example script below:
$accessrequest = Get-SafeguardAccessRequest $accessrequest |? {$_.state -eq 'Pending Password Reset'} ForEach ($i in $accessrequest) { $id = $accessrequest.Id Close-SafeguardAccessRequest -RequestId $id }
Important note: The issue will return if you do not remove the "close expired sessions" flag from access request policies or upgrade to the next release version 7.5 when it becomes available.
© 2025 One Identity LLC. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center