Identity provider Session settings

You can configure different parameters for your IdP session.

Session Idle Expiry - By default, if your IdP session is idle for 120 minutes it expires. The maximum value is 1440 minutes. (1 day)

Limit Session Life - By default, this option is selected and Max Session Duration has a value of 7200 minutes (5 days). So, when you have an active IdP session, it has a maximum life of 5 days. After this period authenticated users will be forced to authenticate again, although the IdP session is active. You will not be able to configure Max Session Duration when you disable Limit Session Life.

You can override these default settings by updating the new values in minutes.

  1. Log in to the Enterprise Center.

  2. In the Enterprise Center navigation menu, select Application Access > Identity & Users > Identity Providers.

  3. Select the IdP from the Identity provider list page.

  4. In Settings > Session, update Session Idle Expiry, Limit Session Life, and Max Session Duration.

  5. Click Save and Deploy, to deploy the changes.