The security cache is an in-memory structure created to hold the security information associated with user roles. Security information is held in this cache to optimize the performance of the authorization process.
The cache is refreshed when the application reboots; it can be refreshed when a system administrator uses the cache refresh facility. The cache must be refreshed whenever any changes have been made to the user roles. This includes changes to security identifiers, security groups, and security roles. However, the addition of a new user, if there are no other associated security changes (e.g. to roles or groups), does not require a security cache refresh.