We have a requirement to set the idle session timeout value in X Minutes Y Seconds. However, i see that at realm level the value can only be set in Hours and Minutes. Is there a way we can set the idle session timeout value in seconds. I see there is a way to use IDle Session Timeout response attached to the OnAuthAccept. Does it work the same way from user exp perspective?
It is possible when you use EnforceRealmTimeouts .
To override the Idle Timeout value,
Create Authentication event RULE with action OnAuthAccept
Create response of type WebAgent-OnAuthAccept-Session-Idle-Timeout, and set to the desired value in seconds.
In the Policy add the Authentication event RULE then set the set the new responses to that rule
Please check below link.
How to Enforce Timeouts across Multiple Realms
Thanks Shankar. Do you think the solution given by you has any affect on performance as compared to setting idle session in the realm directly.
No performance impact. But this will have functional impact. Please go through the doco and try to understand the difference between setting timeout in realm vs setting it via response.