# How to setup Session Invalidator feature

This feature invalidates all prior sessions once the user logs in from a new device or location, ensuring that only the current session remains active. It also enhances the security as well.<br>

Follow the below steps to set up Session Invalidator feature

1. Login to ZTrust Admin Console.
2. Click on Authentication.

<figure><img src="https://1778922777-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F3EUK5AUZv0UVaI5S0CTM%2Fuploads%2F2RUVEkHl6AgxhP0RP3sn%2F37.png?alt=media&#x26;token=3dd18beb-0a81-402e-a0f8-196d2eb22b8f" alt=""><figcaption></figcaption></figure>

3. Click on Duplicate and create a copy of Browser Flow.

<figure><img src="https://1778922777-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F3EUK5AUZv0UVaI5S0CTM%2Fuploads%2FMvgfVdThbPOH1UN8VIme%2F38.png?alt=media&#x26;token=b03375f4-d211-4bbb-b639-1e4e81fb2c64" alt=""><figcaption></figcaption></figure>

4. Provide any name. For example - Session Invalidation and click on OK.

<figure><img src="https://1778922777-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F3EUK5AUZv0UVaI5S0CTM%2Fuploads%2FotQl2jHnfPP42UxUPBlM%2F39.png?alt=media&#x26;token=c999ee57-8cd3-46be-acc5-eed8a037b063" alt=""><figcaption></figcaption></figure>

5. Click on Duplicate.

<figure><img src="https://1778922777-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F3EUK5AUZv0UVaI5S0CTM%2Fuploads%2FMALl2uiixP1oeQlMnipz%2F40.png?alt=media&#x26;token=c2e7901e-a15a-41cb-994a-2e0aadec2d72" alt=""><figcaption></figcaption></figure>

6. Delete all except the Session Invalidation Forms.

<figure><img src="https://1778922777-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F3EUK5AUZv0UVaI5S0CTM%2Fuploads%2FxynYjNPqraACLE9T8iUy%2F42.png?alt=media&#x26;token=c3b18c6f-9401-4706-be97-d54ff6c4716a" alt=""><figcaption></figcaption></figure>

7. Click on Add step.

<figure><img src="https://1778922777-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F3EUK5AUZv0UVaI5S0CTM%2Fuploads%2FURVyEExTOJ97ck61Edge%2F43.png?alt=media&#x26;token=5835b9ed-f614-41d8-92ff-31a48bd24c9b" alt=""><figcaption></figcaption></figure>

8. Select Advanced Session Invalidator.
9. Click on Add.
10. For Advanced Session Invalidator, make the requirement as Required.

<figure><img src="https://1778922777-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F3EUK5AUZv0UVaI5S0CTM%2Fuploads%2FqrysAnDv51OaDIYtnXRS%2F44.png?alt=media&#x26;token=910ccea1-c724-4e12-a67d-80216153f854" alt=""><figcaption></figcaption></figure>

11. For Advanced Session Invalidator, click on settings.

<figure><img src="https://1778922777-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F3EUK5AUZv0UVaI5S0CTM%2Fuploads%2FCZ1tmB2urv68Y20DdTW6%2F45.png?alt=media&#x26;token=8973c292-6d2e-4a58-8639-b89ff7cc0391" alt=""><figcaption></figcaption></figure>

12. Mention the MAX Allowed session per user as 1. Enter the other details as required.

<figure><img src="https://1778922777-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F3EUK5AUZv0UVaI5S0CTM%2Fuploads%2FwwgaFTAk5OIdInDfzC72%2F46.png?alt=media&#x26;token=c2723b2f-28f9-4dec-9eb0-a04f2361691a" alt=""><figcaption></figcaption></figure>

13. Click on Save.
14. Click on Action, and then Bind flow.

<figure><img src="https://1778922777-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F3EUK5AUZv0UVaI5S0CTM%2Fuploads%2FVDEU8bKWehoRATOnXVKU%2F47.png?alt=media&#x26;token=c6f7d536-a170-4ace-9fb4-5b9decd3301f" alt=""><figcaption></figcaption></figure>

15. Select Browser flow from the dropdown menu.

<figure><img src="https://1778922777-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F3EUK5AUZv0UVaI5S0CTM%2Fuploads%2FmvXqClBNWXr5RG5OtIsT%2F48.png?alt=media&#x26;token=24bad253-0912-4ee7-b499-b8d85d06ab84" alt=""><figcaption></figcaption></figure>

16. Click on Save.

Session Invalidation feature is configured now.

<br>