000024737 - Minimizing impact of changing the RSA Access Manager key server parameter cleartrust.keyserver.token_lifetime in a live environment with multiple key servers

Document created by RSA Customer Support Employee on Sep 8, 2018
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000024737
Applies ToRSA Product Set:  Access Manager
RSA Version/Condition:  5.5
IssueChanging the key server parameter cleartrust.keyserver.token_lifetime in a live environment with multiple key servers has the potential to disrupt currently authenticated users. How can this be done with minimal impact on user's web session experience?
ResolutionDuring the configuration update process, ensure that all RSA ClearTrust Web Agents have their cleartrust.agent.idle_timeout set to match the lowest value of cleartrust.keyserver.token_lifetime in the keyserver.conf file.
Legacy Article IDa29430

Attachments

    Outcomes