Users being logged out suddenly.

[Guest]

I have a weird one. My users will be on the system and suddenly get logged
out. I have forms authentication turned on with a 1200 minute logout (I
raised it that high to test this out.) Session timeout is also 1200 minutes.
It's almost acting as if its happening when IIS is cycling memory because it
get's to be to much memory. (I've been working with Microsoft on this problem
and they essentially say that have the system chew up memory is normal and
OK. Just cycle memory.)

The system is on a cluster - I don't know if that would cause a problem. I'm
thinking of changing the memory from inproc to DB but don't know if that will
help any.

Any thoughts?

Jeff.

 

[Mark Fitzpatrick]

Jeff,
well, session variables at 1200 minutes is very, very long. There are very
good reasons to have timeouts shorter, so that memory can be collected. It
also depends on the items that are stored in the session objects. I've seen
instances where developers were storing large datatables in the session
store for each and every user, eating up absolutely tons of memory.

From what I understand, using a database when doing a clustered web site is
much better becuase a clustered web application can't of course share
session variables between nodes on the cluster.

Have you run some tests to see what how big the objects are getting to be in
the session store for each user? Also make sure you're doing some garbage
collection whenever you can. Even though .Net is managed code, one we still
need to ensure we are disposing of objects and resources as soon as we don't
need them to help speed up garbage collection.

 

[kaza]

I have a weird one. My users will be on the system and suddenly get logged
out. I have forms authentication turned on with a 1200 minute logout (I
raised it that high to test this out.) Session timeout is also 1200 minutes.
It's almost acting as if its happening when IIS is cycling memory because it
get's to be to much memory. (I've been working with Microsoft on this problem
and they essentially say that have the system chew up memory is normal and
OK. Just cycle memory.)

The system is on a cluster - I don't know if that would cause a problem. I'm
thinking of changing the memory from inproc to DB but don't know if that will
help any.

Any thoughts?

Jeff.

your machine keys diffeerent, if you user arives from one node to
another he will not be able to authenticate there (as the key for
authentication-token encryption/decription is different, you have to
configure this in web.config so that both machines are using same key,
this way both of them will be able to use keys comming from client (ie
share clients)


regards
almir
ps
session timeout 1200 is long -very long it is time between two clicks!
if your sessiontimeout is 1h and user post a click ever 45 minutes it
will stay in session forewer

and use some shared storage for session, until now your users were
always on the same machine now they will share machines

 

[Mufasa]

Thanks. I've changed over to storing the session in SQLServer and we will
see if it is any better.