Symantec Access Management

  • Private Community
 View Only

  • 1.  Idle Session Timeout value in Seconds

    Posted Feb 15, 2018 04:00 AM

    Hi Team,

     

    We have a requirement to set the idle session timeout value in X Minutes Y Seconds. However, i see that at realm level the value can only be set in Hours and Minutes. Is there a way we can set the idle session timeout value in seconds. I see there is a way to use IDle Session Timeout response attached to the OnAuthAccept. Does it work the same way from user exp perspective?

     

    Thanks,

    Rashmeet



  • 2.  Re: Idle Session Timeout value in Seconds
    Best Answer

    Posted Feb 15, 2018 05:10 AM

    Hi Rashmeet,

     

     

    It is possible when you use EnforceRealmTimeouts .  

     

    To override the Idle Timeout value,

    Create Authentication event RULE with action OnAuthAccept

    Create response of type WebAgent-OnAuthAccept-Session-Idle-Timeout, and set to the desired value in seconds.

    In the Policy add the Authentication event RULE then set the set the new responses to that rule

    Please check below link.

    How to Enforce Timeouts across Multiple Realms 

     

     

    Thanks,

    Shankar

     



  • 3.  Re: Idle Session Timeout value in Seconds

    Posted Feb 15, 2018 05:45 AM

    Thanks Shankar. Do you think the solution given by you has any affect on performance as compared to setting idle session in the realm directly.



  • 4.  Re: Idle Session Timeout value in Seconds

    Posted Feb 15, 2018 12:17 PM

    No performance impact. But this will have functional impact. Please go through the doco and try to understand the difference between setting timeout in realm vs setting it via response.