security token expired

Hi All,

Has anyone see the following messages in the server ini with tools release 8.96_1.3:

3316/3320 MAIN_THREAD Mon Oct 01 09:41:03.766002 PSAuthToken.cpp592
ValidateAuthToken: returning PSAUTHTOKEN_EXPIRED

3316/3320 MAIN_THREAD Mon Oct 01 09:41:03.766003 jdeksec.c4196
Failed to validate auth token: token expired

3316/3320 MAIN_THREAD Tue Oct 02 08:51:33.009000 PSEOneAuthToken.cpp300
IsExpired: Token for user ARPREB is expired

3316/3320 MAIN_THREAD Tue Oct 02 08:51:33.009001 PSEOneAuthToken.cpp163
IsValid: Token for user ARPREB is expired

We get this if a session is idle too long. User must log off and back on otherwise they are unable to submit UBEs, etc.

I'm wondering if it requires a entry in the JDE.INI with a timeout value.

We're not on the web yet and end users use citrix. It's happened on my fat client also when I left the session open overnight.

Filiz,

This is normal behaviour since 8.93 tools (maybe earlier). Peoplesoft introduced their token-based authentication mechanism into the E1 code. It is the same mechanism that is used for web single signon and the E1 portal.

You will find information in the 8.96 Security Administration guide that talks about how to configure the two time based settings - RegulareLifeTime and ExtendedLifetime to increase the time that a fat client token will be valid on the enterprise server.

The ini section will look something like this:

[TRUSTED NODE]
numTrustedNodes=1
RegularLifeTime=7200
ExtendedLifeTime=43200
NodeName=_LOCALNODE
MachineName=_LOCALNODE

You will need to add it to both your enterprise server's JDE.INI and all fat clients. Take a look at the Security Admin guide in your PeopleBooks for more detail.