Sessions
Last updated
Last updated
SSO Session Idle
It refers to the duration of inactivity before a session expires.
The Tokens and browser sessions are invalidated when a session gets expired.
This timeout value resets with authentication or refresh token requests from clients.
You can adjust the value using the arrow buttons and choose the duration unit from the dropdown—options include Minutes, Hours, or Days.
This represents the maximum duration that a session remains active.
Once this time limit is exceeded, the session expires.
This invalidates both tokens and browser sessions.
You can modify the value using the arrow buttons and select the duration unit from the dropdown, which includes options like Minutes, Hours, or Days.
This indicates the duration of time a Remember Me session can remain idle before expiration.
Once expired, both token and browser sessions are invalidated.
If not set, it defaults to the standard SSO Session Idle value.
You can customize the value as per your requirements by using the arrow buttons.
You can adjust this value using the arrow buttons and select the duration unit from the dropdown, with options like Minutes, Hours, and Days.
This sets the maximum duration for a Remember Me session before expiration.
Both token and browser sessions are invalidated upon expiration.
If not set, it defaults to the standard SSO Session Max value.
You can adjust this duration using the arrow buttons as per your requirement.
Select the duration unit (Minutes, Hours, or Days) from the dropdown.
This refers to the duration for which a Client Session can remain idle before expiration.
Tokens are invalidated upon session expiry.
If not set, it defaults to the standard SSO Session Idle value.
You can adjust the values and select the duration unit from the dropdown menu as needed.
This refers to the maximum duration for which a Client Session remains active before expiration.
Tokens are invalidated once the session expires.
If not set, it defaults to the Standard SSO Session Max value.
You can adjust the values and select the duration unit from the dropdown menu as required.
This setting is for offline access and defines the duration for which an Offline Session can remain idle before expiration.
To maintain the Offline Session, the offline token must be refreshed at least once within this period; otherwise, the session will expire.
You can customize this duration by adjusting it using the arrow buttons according to your needs. Choose the unit of duration (Minutes, Hours, or Days) from the dropdown menu.
When activated (toggled ON), Offline Session Max determines the maximum duration for an offline session, independent of user activity.
When deactivated (toggled OFF), offline sessions only expire due to inactivity.
Once this is enabled (toggled ON), Offline Session Max can be configured.
This setting is for offline access, determining the maximum duration for which an Offline Session remains active irrespective of user activity.
You can customize this duration and select the unit (Minutes, Hours, or Days) from the dropdown menu as per your requirements.
This sets the maximum duration for users to complete the login process.
If authentication exceeds this time, users need to start the authentication process again.
It's recommended to set this duration longer, such as 30 minutes.
You can adjust the values and select the duration unit from the dropdown menu as required.
This refers to the maximum time duration before which users have to complete login-related tasks, like updating passwords or configuring TOTP.
It's recommended to set this duration longer, around 5 minutes or more.
You can adjust the values and select the duration unit from the dropdown menu as required.
After making any modifications, click on Save to apply those changes into the system.
If you prefer not to finalize your alterations, click on Revert.
This action will discard all changes made.
