Expand my Community achievements bar.

Don’t miss the AEM Skill Exchange in SF on Nov 14—hear from industry leaders, learn best practices, and enhance your AEM strategy with practical tips.
Read More & Register today!

Reader caching credentials?

Avatar

Level 1
Level 1
6/17/09 11:18:38 AM

Maybe this belongs in a Reader forum somewhere but I arrived at the issue / question through testing LiveCycle Rights Management so I'm starting here ...

I'm seeing some odd behavior accessing policy-protected documents.

Adobe Reader appears to cache the username / password to make it easier for you to open multiple policy-protected pdfs in the same session.  There appears to be a problem, however, if you use more than one valid username / password combination to open documents secured by the same LiveCycle server.

Say you Person A routinely use both User A and User B for opening policy protected documents that have been protected by LiveCycle server A.

If you open Document A that only allows User A to access it and you provide your User A username and password, you can open the document just fine.  If you then try to open Document B that only allows User B to access it, you will not be given an opportunity to enter User B's username and password.  Instead you receive the "This document is locked.  You do not have permission to open it.  Contact the person who sent you this document and ask them to give you permission to open it." error message.

You will not have an opportunity to enter User B's username and password until you 1) forcibly terminate AcroRd32.exe OR reboot your PC.

I'm using LiveCycle 8.2 SP2 and Reader 8.1.4 (KB 408682).

Can anyone replicate this behavior?  Is this to be expected?

Views

2.5K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
2 Replies

Avatar

Former Community Member
6/17/09 11:30:08 AM

The behavior you are experiencing is expected.

Acrobat\Reader does establish a session with the RM server once a user successfully authenticates to a rights managed document (i.e. the document opens).

For the duration of the session, the user id and password is retained and used when another rights managed PDF is opened.  The session is ended when a) Acrobat or Reader is closed or B) the session times out (session length is determined by a configuration value on the server)

In your scenario, even though User A and User B are the same person, Rights Management only knows about the currently logged in user (User A), for the session duration.  This is why the document protected for User B will not open until you authenticate as User B.

Regards

Steve

Views

736

Replies

0

Total Likes

Translate
Translate

Avatar

Level 1
Level 1
6/18/09 10:33:12 AM

I suspect that reducing the server timeout for authenticated sessions would have a negative effect on users viewing documents that do not allow offline access (e.g., they will be prompted to re-authenticate each time the sessions is expired.)

Is there any way to configure the Reader / server to prompt the user for an alternate username / password in the event that the cached credentials, while valid, are not authorized to perform the requested action (e.g., open the document)?

This would seem to me a functional issue that would prevent large enterprises from rolling out LiveCycle Rights Management if they didn't already have an enterprise-wide "single sign-on" facility available for authentication.

Views

716

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
Adobe Reader 8 download Solved

Views

3.3K

Likes

0

Replies

2
Document will not open says need adobe reader 8 or higher Solved

Views

28.8K

Like

1

Replies

6
Livecycle scribble functionality does not work correctly in pdf reader Solved

Views

2.6K

Like

1

Replies

1
Livecycle ES2 PDF form and Adobe Reader Data Connection. Solved

Views

3.0K

Likes

0

Replies

3
Show document title in title bar of Adobe reader/acrobat pro Solved

Views

1.9K

Likes

0

Replies

2