Question
Access group authentication doesn't seem to work correctly
I face the login popup after certain minutes by no processing is initiated. It seems that it is available to access a case despite cancel the login.
How should I configure to make authentication work correct? Should I also set requestor timeouts with the same value of authentication timeout?
- Pega Platform version: 8.2.x
I also have read the article below to try understanding about timeout mechanism.
https://community.pega.com/sites/default/files/help_v63sp1/Content/definitions/t/timeouts.htm
Hi Brad,
Thanks for the links. My understanding is as follows:
- If both SAML authentication and basic authentication are configured, they work separately and a user can access even if s/he cancel logging in because the other authentication may be still valid (not reauthentication required state).
Is my understanding correct?
Hi,
Configuring timeout and reauthentication is slightly different for each method of logging in. You will want to take a look at the third one for the access group setting.
SAML: https://community.pega.com/sites/default/files/help_v82/procomhelpmain.htm#data-/data-admin-/data-admin-authservice/saml-requiring-re-authentication-for-new-and-expired-sessions-tsk.htm
OpenID: https://community.pega.com/sites/default/files/help_v82/procomhelpmain.htm#data-/data-admin-/data-admin-authservice/oid-requiring-re-authentication-for-new-and-expired-sessions-tsk.htm
Basic Authentication: https://community.pega.com/sites/default/files/help_v82/procomhelpmain.htm#data-/data-admin-/data-admin-authservice/basic-requiring-re-authentication-for-new-and-expired-sessions-tsk.htm