We've recently noticed that when a user changes his password, the expired password still works for up to an hour after the change.
We're using crowd 3.2.3 with a Microsoft Active Directory ldap user directory. Crowd is behind a reverse proxy. The Directory is using pretty much default settings.
Is there any setting I can change to stop this security hole?
I'm Alison Huselid, Head of Product for Data Center at Atlassian. As we shared in our last post, we’ve been working on a solution for those of you who work for charitable non-profit organizations tha...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events