Authentication failed with Too many user sessions error

search cancel

Authentication failed with Too many user sessions error

book

Article ID: 424445

calendar_today

Updated On:

Products

Symantec Identity Security Platform - IDSP (formerly VIP Authentication Hub) SITEMINDER

Issue/Introduction

VIP Authentication Hub and SiteMinder integration authentication flow is broken.

We got HTTP 500 internal error and the bctokencontroller's URL shows "Too many user sessions" error

https://xxxx.xxxx.xxxx.xxxx/affwebservices/public/bctokencontroller?error=INVALID_REQUEST&error_description=Too%20many%20user%20sessions&state=SMSTATEGUID-xxxxxxxx-xxxxxxxx-xxxxxxxx-xxxxxxxx-xxxxxxxx-xx&error_code=0000117&X-CLIENT-TRANSACTION-ID=xxxxxxxx-xxxxxxxx-xxxxxxxx-xxxxxxxx-xxxxxxxx-xx&X-TRANSACTION-ID=xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx

Kibana log shows "Authentication failed" messages.

Environment

VIP Authentication Hub 3.4.x
SiteMinder 12.9

Resolution

Increasing the following Session parameter resolves the problem.
E.g.
SSO Maximum User Sessions (ssoMaxSessions) to 20 from 10
Admin Console SSO Maximum User Sessions (adminConsoleSsoMaxSessions) to 30 from 3

You can use Admin Console and go to Settings > Service Configuration > SSO Session Settings and increase the values and click the [Save] button at the bottom.

You can also use Update TenantSettings API to patch/update the parameter values.

Feedback

thumb_up Yes

thumb_down No