ARKSSPR 2.0
  • ARKSSPR
    • Overview
      • What is ARKSSPR
      • FAQs
      • Road-Map
      • Licensing
    • Planning
      • POC Requirements
      • Supported Configurations
      • Windows Server Requirements
      • SQL Server Requirements
      • Network Requirements
      • Design
    • Deployment
      • Active Directory Rights
      • DNS Service Record for Agent Autodiscovery
      • HTTPS Certificate
      • ARKSSPR Internal Installation
        • Installing Microsoft SQL Server
        • Internet Information Service Installation
        • .NET Core 6.0 Download and Install
        • .Net Framework 4.7.2 Download and Install
        • Installation
        • First Time Wizard
        • IIS Configuration
        • Initial Configuration
      • ARKSSPR DMZ Installation
        • Internet Information Service Installation
        • .NET Core 6.0 Download and Install
        • Installing ARKSSPR DMZ Installation
        • IIS Configuration
        • Initial Configuration
    • Administration
      • Login
        • Root Account
      • Password Reset
      • Unlock Account
      • My Account
        • Change Password
        • Secondary E-Mail
        • Validation Type
        • Authenticator Definition
      • Report Management
        • Reports
        • Report Schedule
      • Role Management
      • Settings
        • General Settings
          • Server Settings
          • LDAP Settings
          • E-Mail Settings
          • SMS Settings
          • Syslog Settings
          • Ticket Settings
        • Login Settings
          • General Settings
          • Captcha Settings
          • Validation Settings
        • User Settings
          • Authenticator Management
        • Policy Settings
          • Password Settings
          • Policy Settings
        • Portal Settings
      • License Management
        • Offline License
        • Online License
      • Log Management
      • Screen Management
      • Ticket Management
    • Troubleshooting
      • UserTokenTTL
      • Securing Windows Server
Powered by GitBook
On this page

Was this helpful?

  1. ARKSSPR
  2. Troubleshooting

UserTokenTTL

It has been reported that password changes on the SSPR server are not reflected immediately and that there are cases where the old password can be used to log in. This feature is a feature of the Microsoft IIS service and is due to the default 15-minute value of the UserTokenTTL. The IIS cache keeps the token information of the user account alive for 15 minutes. In order to change this value, this value must be changed from the registry on the server.

It is recommended that you back up your system before making changes to the Registry. Any incorrect changes you make to the Registry may cause the system to malfunction. All changes made are the responsibility of the system administrator.

  1. The Registry editor opens,

  2. "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\InetInfo\Parameters" Node is expanded.

  3. If there is a record named UserTokenTTL under Parameters, double-click it to open edit mode and set its value to 0.

  4. If there is no record, right-click it under Parameters to live and create a new REG_DWORD. The name of the newly created record is UserTokenTTL.

  5. The record is opened by double-clicking it and set its value to 0.

  6. IIS is restarted.

PreviousTroubleshootingNextSecuring Windows Server

Last updated 8 months ago

Was this helpful?