Microsoft KB Archive Search

Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

  1. Home
  2. FIX: Preauthenticated user can access additional sites even if the user session has exceeded the time-out period in Forefront Unified Access Gateway 2010

FIX: Preauthenticated user can access additional sites even if the user session has exceeded the time-out period in Forefront Unified Access Gateway 2010

View products that this article applies to.

Symptoms

Microsoft Forefront Unified Access Gateway 2010 (UAG) provides cross-site single sign-on (SSO) functionality. This lets users who log on to one Forefront UAG site access additional Forefront UAG sites that are configured in the cross-site list without having to reauthenticate. Forefront UAG 2010 also lets an administrator define session time-out values in the portal trunk properties.

In a Forefront UAG site that's configured for cross-site SSO, a preauthenticated user who has an existing cross-site authorization cookie may be permitted access even if the user session has exceeded the defined portal trunk session time-out period.


↑ Back to the top

Resolution

To resolve this problem, install the service pack that is described in the following Microsoft Knowledge Base article:

2744025 Description of Forefront Unified Access Gateway 2010 Service Pack 3

↑ Back to the top

Status

Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.

↑ Back to the top

References

For more information about how to implement cross-site single sign-on and trunk session time-out values, go to the following Microsoft TechNet websites:

Implementing cross-site single sign-on for Forefront Unified Access Gateway (UAG)

Forefront Unified Access Gateway (UAG) Trunk properties help
For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
824684 Description of the standard terminology that is used to describe Microsoft software updates

↑ Back to the top

Keywords: kbnotautohotfix, kbqfe, kbfix, kbexpertiseinter, kbsurveynew, kbbug, kb

↑ Back to the top

Article Info
Article ID : 2812392
Revision : 1
Created on : 1/7/2017
Published on : 2/20/2013
Exists online : False
Views : 262