Configuring web console session timeouts

To protect your system from unauthorized access, the Trust Protection Foundation web console automatically logs users out after a period of inactivity. You can customize this session timeout duration globally to meet your organization's security policies.

To configure the session timeout

  1. In Trust Protection Foundation, open Policy Tree then navigate to the Platforms tree.
  2. Click the root engine node, then click the Authentication tab.
  3. In the Settings sub-tab, look for UI Session Timeout.
  4. Specify the timeout duration in seconds. The timeout value must be between 900 seconds (15 minutes) and 86400 seconds (24 hours). The default is 1800 seconds (30 minutes).
  5. Click OK.

IMPORTANT  This value will not be applied until you stop and restart the web server (IIS). You will need to restart all web servers in the cluster to propagate this change, which can be done in sequence to prevent or minimize downtime.

NOTE  These session timeout settings are retained automatically when you upgrade to a new version of CyberArk Trust Protection Foundation - Self-Hosted.