Symantec Identity Management

Expand all | Collapse all

Does CA Identity Portal support Session Idle timeout ?

Jump to Best Answer
  • 1.  Does CA Identity Portal support Session Idle timeout ?

    Posted 02-12-2019 07:14 PM

    Does CA Identity Portal support Session Idle timeout ?



  • 2.  Re: Does CA Identity Portal support Session Idle timeout ?

    Posted 02-13-2019 10:15 AM

    As part of integrating the Portal with SSO, please configure the “logout-strings.definition.js” file. This file should contain specific strings that appear in the html file of the SSO login page. This way, when there’s a SSO timeout and the SSO agent returns its login page, the Portal’s UI will be able to recognize that this is the case and will kill its own session. 

     

    See: 
    https://docops.ca.com/ca-identity-suite/14-1/EN/integrating/protecting-ca-identity-portal-with-ca-single-sign-on/configure-ca-identity-portal 

     

    Refer to the section “Configure the logout-strings.definition.js file” in the following documentation page: 

     

    The “logout-strings.definition.js” file is inside the sigma.war in the “\static-html\custom\” directory. After making the appropriate modifications in the file (and therefore changing the sigma.war), the modified sigma.war needs to be deployed on Jboss, i.e. overwriting the already deployed sigma.war.



  • 3.  Re: Does CA Identity Portal support Session Idle timeout ?

    Posted 02-14-2019 02:22 AM

    Let said, we are not integrating with SSO.

    Based on Identity Portal https://vapp.forwardinc.ca/sigma/app/index#/login 

     We login with "imadmin" or "portaladmin" , when into main page. Then web browser idle to 5 to 10 mins.

    Then Identity portal automatically logout.

     

    Where is this idle timeout been configure ?



  • 4.  Re: Does CA Identity Portal support Session Idle timeout ?
    Best Answer

    Posted 02-15-2019 10:27 AM

    The timeout setting is on standalone-full-ha.xml.  However, under Vapp this file cannot be edited as config user did not have privilege to modify it. Therefore, you cannot change the timeout on IP.  You might open an IDEA ( Enhancement Request) on this community. 



  • 5.  Re: Does CA Identity Portal support Session Idle timeout ?

    Posted 02-18-2019 02:12 AM

    ic, thanks for the info.



  • 6.  Re: Does CA Identity Portal support Session Idle timeout ?

    Posted 03-04-2019 09:23 PM

    Hi Yuan,

    Let said am using software based Identity Portal instead of vapp, 

    do u know which extact parameter to change in the standalone-full-ha.xml ?

     

    regards,

    William