"After enforcement, force a re-login on the managed device, if necessary" setting is ignored

  • 7007600
  • 19-Jan-2011
  • 16-Jul-2012

Environment

Novell ZENworks 10 Configuration Management Policies
Windows Group Policies

Situation

After applying an updated Windows Group Policy to a device, logged-in users are forced to log out even though the After enforcement, force a re-login on the managed device, if necessary setting is off/unchecked.

Resolution

This is fixed in version 10.3.4 - see KB 7008244 "ZENworks Configuration Management 10.3.4 - update information and list of fixes" which can be found at https://www.novell.com/support

This is fixed in version 11.2 - see KB 7010044 "ZENworks Configuration Management 11.2 - update information and list of fixes" which can be found at https://www.novell.com/support

Workaround: 
Set After enforcement, force a re-login on the managed device, if necessary off/unchecked on any Roaming Profile Policy that is associated with the same user or device.

Additional Information

Steps to duplicate:
  • Assign a Roaming Profile Policy and set After enforcement, force a re-login on the managed device, if necessary to 45 seconds
  • Assign a Group Policy and set After enforcement, force a re-login on the managed device, if necessary off/unchecked
  • Ensure both policies are applied to a user and the device is refreshed
  • Log out/in as necessary so the device is in a 'clean' state
  • Increment the version of the Group Policy only and refresh the device
  • What should happen:  The Group Policy gets updated/enforced and the user is left logged in
  • What actually happens:  The Group Policy gets enforced and the user is prompted that they will be logged out in 45 seconds (i.e.  per the Roaming Profile policy)

Feedback service temporarily unavailable. For content questions or problems, please contact Support.