DPS error report by mail: SecurityTokenExpiredException

Hello,

What Devolutions Password Server version are you using?

You can disable the Email feature to not receive any email from DPS in Administration - Password Server Settings - Email on the DPS web interface.
https://helpserver.devolutions.net/webinterface_email.html

This error message is related to an expired token from the Office365 authentication.

Could you please verify the users who triggers these errors that their computer time is synchronized with the DPS machine time and ask them to clear their browser cache to see if this will help to get rid of these errors.

Best regards,

Hi Érica,

We use version 2020.2.7.0.

I sometimes get this message also for myself. I hink this morning I've got about 10-15 emails for different users. But in RDM itself, the situation recovers itself automatically.

The time is synced on my laptop. Clearing the cache did not change anything.

In RDM I did have no problems, only the email notifying of a 'problem' which autocorrected itself is a bit anoying.

For now I have disabled all emails in DPS.




Kind regards,
Raymond

Hello,

Thank you for the information.

Could you please compare the Token Valid Time parameter in Administration - Password Server Settings - Advanced if it's greater than the Azure token lifetime?

Having a shorter value than the Azure token could help as DPS will first check the Azure token and will trigger that error message as it's expired. Let me know if that will impact the number of SecurityTokenExpiredException - IDX10223: Lifetime validation failed errors in the DPS logs.

Best regards,

Hi Érika,

The token lifetime was set to 1 day. I'll increase it to 3 days, and check the logs.

Hello Raymond,

Thank you for the information. We will then wait for your feedback about that new configuration to know if that will help.

Best regards,