Looking in log C:\SoftwareAG\ARIS9\server\bin\work\work_apg_m\base\logs\umc.log, i discover a permanent trace of errors of authentification for user system. Is that the trace of a hacker trying to enter on our server ?
regards,
pam
2016-01-13 15:17:16,198|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - User session invalidated.
2016-01-13 15:17:29,195|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - Invalidating user session... [TENANT: insa3if, USER: system]
2016-01-13 15:17:29,211|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - User session invalidated.
2016-01-13 15:17:42,193|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - Invalidating user session... [TENANT: insa4if, USER: system]
2016-01-13 15:17:42,208|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - User session invalidated.
2016-01-13 15:18:08,215|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - Invalidating user session... [TENANT: default, USER: system]
2016-01-13 15:18:08,230|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - User session invalidated.
2016-01-13 15:18:08,324|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - Invalidating user session... [TENANT: default, USER: system]
2016-01-13 15:18:08,340|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - User session invalidated.
2016-01-13 15:18:21,210|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - Invalidating user session... [TENANT: insagi, USER: system]
2016-01-13 15:18:21,226|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - User session invalidated.
2016-01-13 15:18:34,237|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - Invalidating user session... [TENANT: insa3if, USER: system]
2016-01-13 15:18:34,252|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - User session invalidated.
2016-01-13 15:18:47,237|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - Invalidating user session... [TENANT: insa4if, USER: system]
2016-01-13 15:18:47,252|INFO |apg0000000000|||0000000000|ZkcQueueBuilder-1|AuthenticationService - User session invalidated.
Hi,
no, this is no hacker, these are just obsolete sessions that are cleaned up.
E.g. if you just close the browser (ARIS Connect) or disconnect the client machines, still sessions are open. Periodically, the system checks for these sessions and cleans them up.
Bye,
Frank
In reply to Good day Frank, by W Engelbrecht
Hi Willem,
see this setting in the screenshot below. Just reduce this to 20 minutes.
But what do you mean with "inactivity"?
This does not mean, that, if a user opens a model and examines this e.g. for more than 20 minutes, the session is closed. The client sends "keep alive" messages to the server as long as it runs.
This session is only meant to kick out the session, in case, e.g. you shut down the client or close the network connection.
Bye,
Frank
Hi Frank,
Thanks for your reply.
We found that some users had multiple sessions running, even though they were not logged in, so were wondering if we could close the sessions without logging into the umc and actually closing the sessions by running a script or running a macro of some sorts.
The 20 minutes could also be seen as logging the user out of ARIS if /shehe is not actually doing anything, same principle as a screensaver, no activity for 20 minutes, you get logged out autoatically. The client has limited concurrent user licences, and forcing a logout, will actually free up the licence for someone else.
Again thanks,
Willem
