Can I modify the users relative distinguished name (RDN) while the user session is active?
The identity management APIs, that is, AMIdentity (idrepo), offers no interfaces for changing the RDN. Note: If you change the RDN while the user session is active, that session is not invalidated even though the cache entry for that user is flushed. That means that any read-write operations by the user that involve the SSO token will fail because the original session is linked with the old distinguished name. After the user logs out and logs back in, read-write operations will work properly.
Related Questions
- Does SECURITREs NATURAL Session Initialization Security provide a way to force a user who specifies a given FUSER file to use a corresponding FDIC file?
- If I am running a console redirection session and a local user accesses the remote system, do I receive a warning message?
- Does a PROFILER session relate to a specific user?