Invalid State Error? - How to fix it in ISAM
Contents
Overview
When interacting with federation partners in Verify Access and ISAM, we create an /authorize
request off to that identity provider with a state
ID. If the user spends more than 10 minutes authenticating with the Identity Provider, then when they return back, we might get the following error FBTOIC106E Invalid state
from the runtime.
This error can mean multiple things, but in this case, it most likely that the runtime session has expired. So, how can we extend this?
Runtime Tuning Parameters
There are two key settings we can change to help address this error.
Session Invalidation Timeout:
This parameter defines the amount of time a session can remain unused before it is no longer valid. The default setting is 600 seconds.
- On the Runtime Tuning Parameters panel, select Session Invalidation Timeout.
- Click Edit.
- In the Session Invalidation Timeout window, define the value in seconds.
- Click OK.
Maximum Session Count:
This parameter defines the maximum number of sessions that is maintained in memory. The default setting is 250,000 sessions.
- On the Runtime Tuning Parameters panel, select Maximum Session Count.
- Click Edit.
- In the Maximum Session Count window, define the value.
- Click OK.
Additional Information/Links
Here are some useful links you can checkout for additional information.