ACL: Where will the username and password be stored in IS?

We are facing an interesting issue. Everty time when we recycle our server, sunday night, a couple of newly configured users are not able to use their username and password. We need to update their credentials to enable them.

Does this ring a bell? Please advise.


Do you have configured CentralUsers or are them local users?


Then this explains…

When CentralUsers are configured, IntegrationServer will connect to the configured JDBC CentralUsers pool, and will grab the DirectoryService URL, for example ldap://

It will use a internal library and perform a direct connection to the LDAP server, and uppon customer login request will verify credentials on first request.

This will be cached for some time (can’t remember how long).

Now if you change user credentials on the LDAP server, IS will not be aware for the new password until cache is cleared and a new real request is done to the LDAP.
On the other side if you change something for the user on IntegrationServer who cannot write to LDAP, it will work until it has to fetch the “old” credentials not updated in the LDAP.

Always perform changes on LDAP (or any other DirectoryService source).

Hope this helps.

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.