IIS 7 and Above
IIS7.5 - User Token Cache Timeout Ignored
Last post Apr 05, 2012 10:59 AM by KeithHutch
Feb 18, 2010 09:42 AM|Mark Seward|LINK
We have an existing ASP.net website hosted on Win 2003 & IIS 6. It uses Windows AD credentials & Basic auth & https. User access to various areas of the app is controlled by membership in AD groups.
To cause the app to detect changes to group membership in a timely fashion, we have set the HKLM\System\CurrentControlSet\Services\InetInfo\Parameters\UserTokenTTL to a low value per
http://www.microsoft.com/technet/prodtechnol/WindowsServer2003/Library/IIS/6b2e7fcd-5fad-4ac8-ac0a-dcfbe771e9e1.mspx?mfr=true . This works fine.
We have tested re-hosting the app under Winserver 2008R2-64bit & IIS 7.5. It appears this registry setting is ineffective. The ASP.Net app does not detect group membership changes until an app pool recycle occurs. This is precluding our migration to the
Does anyone have any experience with this issue or any suggestions?
Apr 05, 2012 10:59 AM|KeithHutch|LINK