Index: lams_common/src/java/org/lamsfoundation/lams/integration/security/SsoHandler.java
===================================================================
RCS file: /usr/local/cvsroot/lams_common/src/java/org/lamsfoundation/lams/integration/security/Attic/SsoHandler.java,v
diff -u -r1.1.2.5 -r1.1.2.6
--- lams_common/src/java/org/lamsfoundation/lams/integration/security/SsoHandler.java	4 Dec 2014 14:58:22 -0000	1.1.2.5
+++ lams_common/src/java/org/lamsfoundation/lams/integration/security/SsoHandler.java	5 Dec 2014 11:20:33 -0000	1.1.2.6
@@ -73,8 +73,6 @@
 		    public void handleRequest(HttpServerExchange exchange) throws Exception {
 			ServletRequestContext context = exchange.getAttachment(ServletRequestContext.ATTACHMENT_KEY);
 			HttpServletRequest request = (HttpServletRequest) context.getServletRequest();
-			// prevent session fixation attack - change session ID with any login attempt
-			request.changeSessionId();
 
 			// recreate session here in case it was invalidated in login.jsp by sysadmin's LoginAs 
 			HttpSession session = request.getSession();