000021535 - RSA ACE/Server 5.2 users get access denied when attempting to authenticate; message in RSA ACE/Server logs is 'Access denied. Outside user time'

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000021535
Applies ToRSA ACE/Server 5.2
UNIX
Microsoft Windows
IssueRSA ACE/Server 5.2 users get access denied when attempting to authenticate; message in RSA ACE/Server logs is "Access denied. Outside user time"
RSA ACE/Server users are synchronized to an LDAP database. Within the 'Job options' of the synchronization job, the 'Disable/Enable users that are disabled/enabled in LDAP' is checked.
When users in LDAP are disabled, this will cause the same users in the ACE/Server database to be disabled
Resolution
The message "Access denied. Outside user time." appears because the ACE/Server treats the message back for a disabled LDAP user to be treated as an invalid access time (message in log is Outside User Time). This is the same as a Temporary User whose Start/End Date has expired.
Legacy Article IDa23472

Attachments

    Outcomes