Problem with user authentication - portal (Automatic logout of users).

0

Hi Damian
Due to the authentication method used by WEBCON BPS (we do not use server sessions) it is not possible to achieve your scenario with Windows Integrated Authentication.
If you want to have a "kiosk scenario", when many different users work on the same computer, on the same Windows Profile you should use any other Authentication Provider like AAD (Entra Id), ADFS, or OpenId with a logout page correctly configured. (and users should close a browser after logging out).

Best Regards
Pawel Jawien

Hi Paweł,

It wasn't a "kiosk scenario". For example: Users reported that they were logged on their computers on my account but they used their AD login and password. I try to figure out what is wrong with our configuration.

Users were logged on to their Windows accounts on their >>> They were forced to log off from the portal because of the cookies 10-minute limit configuration >>> The login popup was shown on the page >>> They tried to put in the correct login/password but it took two or three times to enter the portal >>> As the results they were logged on my account (two users reported on the almost same time).

Do you have more than one FrontEnd Server and a load balancer in your environment? (some load balancers do not support Windows NT authentication correctly).

We have a Microsoft cloud load balancer - Application Gateway with WAF enabled. It does not balance traffic since we have one Webcon server end and it works as a reverse proxy.

Do you have any pre-authentication method configured or pass through authentication?

Only Windows authentication on IIS with kernel mode authentication enabled.