|Applies To||RSA ClearTrust 5.5.2|
RSA ClearTrust Agent 4.6 for Microsoft IIS
Microsoft Windows Server 2003
Microsoft Internet Information Server (IIS)
|Issue||User group entitlements in RSA ClearTrust|
After an RSA ClearTrust user is included or removed from a user group that has entitlements to a particular ClearTrust-protected resource, the change goes into affect immediately. This occurs even after an authorization cache flush from within the Entitlements Manager (Admin GUI).
|Cause||There is caching within RSA ClearTrust Agent 4.6 that "remembers" the previously existing allow or deny of the user to the ClearTrust-protected resource|
|Resolution||Review the configuration parameters values for the webagent.conf's:|
Reducing these values will result in the user group entitlement taking affect after the specified time.
|Legacy Article ID||a29713|