Effective time of OWA Password Change

From the previous article on the exchange Chinese site, we configured OWA to change its password upon next login. We know that in exchange 2010 SP1, We can configure OWA to change the password of Domain Users, so I don't know if you have found that when the user changes the password in OWA, the modified information will not take effect immediately, but will wait for a while. The default time is 15 minutes. This article will explain how to modify the time, which can be shortened or become effective immediately.

 

The main cause of the error is that IIS updates the User Token 15 minutes later by default. For example, if you change the user account password, you cannot connect to the old and new passwords provided by the server.

 

Method 1: You can refresh the token cache by stopping and restarting all IIS services. To improve the performance, if the user's password is not updated frequently, this is the first solution.

 

Method 2: You can also change the default interval of the token cache in the Microsoft Windows registry.

 

Open regedit in the server where OWA is installed

Locate HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Services \ inetinfo \ parameters.

Then add the key value:

Value: usertokenttl

Data Type: REG_DWORD

Data: (minimum number of seconds for the token cache-30 seconds)

 

 

Note that for IIS 4.0, the minimum value is 30 seconds. For IIS 5.0, the minimum value is 1 second. If this value is set to 0, the minimum value is used.

In IIS 6.0, the minimum value is 0. If this value is set to 0, the TTL-based refresh flag is disabled. When TTL-based cleaning is disabled, the User Token remains cached until IIS is restarted or the working process is reclaimed.

 

After you restart the IIS Management Service and related services, the change of the password in OWA takes effect immediately.

 

Participate in discussion: http://bbs.exchangecn.com/read.php? Tid-7271.html

 

(Responsible editor: Exchange Chinese site)