Password Reset Issue While Switching Remote Loader.

Hello.

We have three Remote Loader (RL) servers installed across three sites, with each RL connected to the respective site’s IDM and AD. Currently, one RL is in an active state, while the others are stopped. We are encountering issues when switching the RL from one site to another, including multiple password reset events on the AD server when starting the RL instance on the other site. Additionally, some account passwords have been changed by IDM. Are there any precautionary steps we need to follow when switching the RL server between sites?

  • 0  

    If you look at your driver, you will see that there are several configuration options about this.  I will show the Designer view, but this is on the first page in iManager.

    So properties of the driver, Driver Configuration tabe, Driver options, Access options.

    Seethe two Password Sync timeout?   That is how long the RL will hold the cached passwords while its connection to the engine is down, before discarding them.

    DC Password TTL - this is how long each addriver.dll on each DC, will hold the password while the RL itself is down and forward when it returns or discard due to TTL limits.

    So your RL's probably have a relativly high Password Sync timeout, so all password changes in the last X minutes that were passed to the RL will replay when you switch RL's. 

    The tradeoffs are tricky.

  • 0 in reply to   

    I have checked the values, here the Password Sync Timeout is 5 and DC Password TimeToLive is 0.