Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

FIX: Preauthenticated user can access additional sites even if the user session has exceeded the time-out period in Forefront Unified Access Gateway 2010


View products that this article applies to.

Symptoms

Microsoft Forefront Unified Access Gateway 2010 (UAG) provides cross-site single sign-on (SSO) functionality. This lets users who log on to one Forefront UAG site access additional Forefront UAG sites that are configured in the cross-site list without having to reauthenticate. Forefront UAG 2010 also lets an administrator define session time-out values in the portal trunk properties.

In a Forefront UAG site that's configured for cross-site SSO, a preauthenticated user who has an existing cross-site authorization cookie may be permitted access even if the user session has exceeded the defined portal trunk session time-out period.


↑ Back to the top


Resolution

To resolve this problem, install the service pack that is described in the following Microsoft Knowledge Base article:

2744025 Description of Forefront Unified Access Gateway 2010 Service Pack 3

↑ Back to the top


Status

Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.

↑ Back to the top


References

For more information about how to implement cross-site single sign-on and trunk session time-out values, go to the following Microsoft TechNet websites:

For more information about software update terminology, click the following article number to view the article in the Microsoft Knowledge Base:
824684 Description of the standard terminology that is used to describe Microsoft software updates

↑ Back to the top


Keywords: kbnotautohotfix, kbqfe, kbfix, kbexpertiseinter, kbsurveynew, kbbug, kb

↑ Back to the top

Article Info
Article ID : 2812392
Revision : 1
Created on : 1/7/2017
Published on : 2/20/2013
Exists online : False
Views : 302