A user reported getting kicked out of OTRS all the time. Several other users reported similar issues recently, but I haven't been able to pinpoint all of them because, as OTRS admins, we can only see the latest syslog entries. However, in two cases, I could observe the following pattern in the syslog:
- User logs in: "User:<username> authentication ok (REMOTE_ADDR <IPv6 address>)"
- Shortly thereafter, his session gets killed: "RemoteIP of '<SessionID>' (<IPv6 address>) is different from registered IP (<IPv4 address>). Invalidating session! Disable config 'SessionCheckRemoteIP' if you don't want this!"
The IP address is the same, only the format differs. The two users use different ISPs. Could this be a problem on our side? If so, it should be fixed.