In R5, if you set the SSO token to expire after an hour, every user was forced to log in again whether they were idle or not. Does anyone know if this is still the case in R6? I have yet to see any documentation on SSO timeout in R6. Heck, it was an obscure tech note in R5. Any help would be GREATLY appreciated!
Subject: SSO timeout still applicable?
I don’t believe that the LTPA spec has changed at all, so the expiration time will remain.
Personally, I think the lack of programmatic exposure of the LTPA APIs has been a real stumbling block, and a great way of IBM shooting itself in the foot. It’s not a bad SSO API; I’d certainly use it more if it was documented in any significant way.
Cheers!
Luke
Subject: RE: SSO timeout still applicable?
SSO timeout for LTPA token is a hard-limit. And SSO timeout for Domino token (not the multi-server one) is a idle timeout. Hope this helps.
Subject: RE: SSO timeout still applicable?
Yes, it’s still applicable. If you do a “tell http show users” from the console you get the LPTA expiration. However, if you go through the Admin client and click Internet Users you see the SSO timeout and not the LPTA timeout.