I have logged into my application and kept it idle for 40mins. After a timeout period, If I try to use application its returning to login screen for entering their credentials (username and password), If I enter my UserName in small case its allowing into application but If I use Capital case (As I entered first login) Its not allowing me into application.
Intial Login Details
Username: PC11 [Capital letters]
Password : Push1891!
After Timeout Issue Login Details which is not allowing me into Application
Username : PC11 [Capital letters]
Error: May not change username during timeout re-validation
But if I enter below details its allowing me into application.
The validation error message is expected when you try to provide different operator id for an existing timed out session. I don't think there is a validation by default for checking case sensitivity for operator ID credentials.
1. What happens when you give pc11 in small letters during the initial login ? Getting authenticated?
2. Are you using any custom authentication for both login and re-login timeout ? (If yes, share the screenshots of your auth service tabs )
3. Have you configured user login and authentication Security Policies for operators ? (If yes, share the screenshot)