Hello All,
I am experience some issues with the cache of user AD Group membership.
If I use, for example, an ad security group to set permissions on a list and add an ad user to that security group the user keeps getting the "Sorry not shared with you" message. If I use the check permissions the user has the permission through that group.
Currently I have tried the following without a consistent behaviour:
-Full User profile Import
-Full User profile Import after deleting the user
-Setting the Get-SPSecurityTokenServiceConfig with shorter timespans
-Delete the old sync databases (stsadm -o sync -deleteolddatabases 0)
-Changed the Token-Timeout (stsadm -o setproperty -propertyname token-timeout
-Set-SPUser -syncfromad
Is there a way to flush the token cache? Is it possible to query the token cache for a specific user?
Thanks for the help.
Best Regards,
André Cunha