Changing the Default Interval for User Tokens in IIS
ID: Q152526
|
The information in this article applies to:
-
Microsoft Internet Information Server versions 1.0, 2.0, 3.0, 4.0, 5.0
SYMPTOMS
Internet Information Server (IIS) has a default delay of 15 minutes before
users tokens are updated. For example, if you change the password on a user
account, you will be able to connect to the server with both the old
password and the new password.
CAUSE
For performance reasons, user tokens are cached by IIS and updated at 15
minute intervals.
RESOLUTION
The token cache can be refreshed manually by stopping and restarting ALL of
the IIS services (Gopher, FTP, and WWW). For performance reasons, this is
the preferred method if updates are infrequent.
The default interval for the token cache can also be changed in the
Microsoft Windows NT registry.
WARNING: Using Registry Editor incorrectly can cause serious, system
wide problems that may require you to reinstall Windows NT to correct them.
Microsoft cannot guarantee that any problems resulting from the use of
Registry Editor can be solved. Use this tool at your own risk.
- Run Registry Editor (Regedt32.exe).
- From the HKEY_LOCAL_MACHINE subtree, go to the following key:
\System\CurrentControlSet\Services\InetInfo\Parameters
- Click Add Value on the Edit menu, and add the following:
Value Name: UserTokenTTL
Data Type: REG_DWORD
Data: (Number of Seconds for token to be cached - 30 sec. Min)
- Stop and restart all three IIS services (WWW, FTP, and GOPHER).
Additional query words:
prodiis
Keywords : kbnetwork kbIIS iisadmin
Version : winnt:1.0,2.0,3.0,4.0,5.0
Platform : winnt
Issue type :