In the organization , we have deployed Sharepoint 2013, to control access to sites decided through security group Active Directory.
Active Directory security groups are added to the site permissions programmatically.
Sharepoint 2013 is not updated ( can not read part of the security group Active Directory) security group membership Active Directory, which have been added programmatically checking permissions through the site settings , shows that a new member of the security group no rights and delegated user can not go to the site .
Example:
In the security setting site has been added to the site security group Active Directory, but the members of this group do not get security access rights to the site until the site's security settings do not delete a security group Active Directory, and then add it again , but in the manual .
After removing the Active Directory security group of security settings site and then re-adding the same Active Directory security groups to the security settings on the same site by hand, members of the Active Directory security groups can access the site.
I searched the internet for similar problems, but all refer to the same solution:
$ sts = Get-SPSecurityTokenServiceConfig
$ sts.WindowsTokenLifetime = (New-Timespan-Minutes 5 ) <- default 1 hour
$ sts.LogonTokenCacheExpirationWindow = (New-Timespan-Minutes 2 ) <- default 10 mins
$ sts.Update ()
I applied this solution in itself, but it did not help me .
