Description
In environments with more than one server per Cora SeQuence component, the following error occurs:
The error occurs when the user refreshes any of the Cora SeQuence pages, restarts working in the a site after a pause, or navigates between pages.
Cause
The load balancer redirects a user with an open session on one server to another server that uses a different encryption key.
Solution
Cora SeQuence components on different servers need to use the same encryption key.
Perform the following steps on each server that includes these Cora SeQuence components:
- Flowtime
- Administration
- Process TOGO
Edit the web.config
file.
- On all the servers with Cora SeQuence components, add the following code to the
web.config
file undersystem.identitymodel
withinidentityconfiguration
section.
<securityTokenHandlers> <remove type="System.IdentityModel.Tokens.SessionSecurityTokenHandler, System.IdentityModel, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" /> <add type="System.IdentityModel.Services.Tokens.MachineKeySessionSecurityTokenHandler, System.IdentityModel.Services, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" /> </securityTokenHandlers>
Generate keys for all the Cora SeQuence sites
- Open Internet Information Services, select the relevant Cora SeQuence site, and select the Machine Key feature.
- Under Machine Key, configure the following:
- Validation method: Set SHA1.
- Encryption method: Set AES.
- Clear the Automatically generate at runtime option.
- Click Generate Keys to fill in the Validation key and Decryption key fields.
- Copy the generated keys.
You will use these keys to set up this component on the other server.
- Repeat step 2 for all the Cora SeQuence sites on this server.
- Repeat steps 1-2 on the remaining servers.
Because you have already generated the keys, you do not need to generate new keys.
Fill in the Validation key and Decryption key fields with the previously generated keys for the site.