Symantec Access Management

Tech Tip : CA Single Sign-On : SessionGracePeriode in atipical situation

  • 1.  Tech Tip : CA Single Sign-On : SessionGracePeriode in atipical situation

    Posted 06-06-2018 10:04 AM

    Issue:

     

    I'd like to know :

     

    Which ACO is chosen to set the session grace periode ?

    Where can I find the documentation about this ?

     

    Resolution:

     

    As per documentation, the Web Agent protecting Application B is
    expected to refresh the SMSESSION cookie each 3480 seconds when you
    define IdleTimeout to 3600 and the SessionGracePeriod is set to 60
    seconds.

     

    IdleTimeout - (SessionGracePeriod * 2)

    Web Agent App A : 3600 - (30 * 2) = 3540 seconds
    Web Agent App B : 3600 - (60 * 2) = 3480 seconds

     

    Session Grace Period and Update Period Settings
    https://docops.ca.com/ca-single-sign-on/12-52-sp1/en/configuring/web-agent-configuration/session-protection/session-grace-period-and-update-period-settings

     

    KB : KB000098228