Hi team, I was wondering if anyone else has experi...
# generala
ancient-island-46672
08/26/2025, 8:54 PMHi team, I was wondering if anyone else has experienced a similar issue where users are creating API tokens and the enabled field on the tokens is being switched to false. It's causing users to have to re-create tokens constantly. For reference we are on rancher 2.9.x and use LDAP for auth. Appreciate any suggestions on how to move forward, thanks!
h
hundreds-evening-84071
08/26/2025, 9:38 PMI think as of rancher 2.8 tokens are only valid for 90-days
hundreds-evening-84071
08/26/2025, 9:39 PMhundreds-evening-84071
08/26/2025, 9:39 PM--
a
ancient-island-46672
08/26/2025, 10:51 PMWe have that set to never expire so don’t believe it’s related
h
hundreds-evening-84071
08/26/2025, 10:54 PMoh ok
hundreds-evening-84071
08/26/2025, 10:55 PMam curious does the issue occur when ldap account (one that generated token) password expires?
hundreds-evening-84071
08/26/2025, 10:56 PMI have ADFS auth and have used local service account to create API token so I have not had this issue
a
ancient-island-46672
08/26/2025, 10:58 PMwe haven’t been able to pinpoint the exact reason, it happens randomly for us, some users have their tokens disabled after 4 days others a month, etc, even though the token was set to never expire. It seems like there’s an enabled field that gets set to false in the token spec
ancient-island-46672
08/26/2025, 10:59 PMthis was the closest issue to what I am seeing: https://github.com/rancher/rancher/issues/42678