SSO Clients are not silently re-authenticated to the datasource


 Product(s):ProjectWise Explorer Client
 Version(s):08.11.11.423
 Environment: Windows 7 64 bit
 Area: MISC
 Original Author:John Lee, Bentley Technical Support Group

Problem Description

Cached SSO domain login credentials are not expired is failing. SSO Clients are not silently re-authenticated to the datasource.

Findings

In the failed case: 

integrated MicroStation SSO credentials are expiring.  The Default lifetime for Client-side cached  login credential used to silently re-authenticate a client to the Integration  Sever is not working correctly and affecting the cached SSO/domain login. The SSO credentials should not expire.

As referenced to the cfg file, cached SSO/domanin login credentials are not expired:

; Default lifetime (in seconds) for client-side cached login credentials, used to

; silently re-authenticate a client to the Integration Server in the event of a

; network disconnect. When using ProjectWise authentication, after this timeout

; occurs clients will be required to re-input their ProjectWise login credentials.

; A value of 0 (or less) is illegal. Use the "User Credential Expiration Policy"

; General user settings (in the ProjectWise Administrator) to set the policy for

; user expirations.

;

; If this setting is commented out, a default expiration value of 10 hours is used.

; Note that this applies to ProjectWise authenticationonly -- cached SSO/domain login

; credentials are not expired.

;

UserLoginTokenTimeout=36000

 

The failure has been confirmed using  MicroStation SS3 version 08.11.09.357 integrated with PWExplorer  version
08.11.11.567 (see fig 1)

Steps to Resolve

Manually reconnect the MicroStation session to ProjectWise by clicking the <OK> button in fig 1 above.