Skip to main content

SSO Login - Understanding Session Timeouts Across Devices

  • March 5, 2025
  • 0 replies
  • 95 views

To help clarify session validity and reconnection expectations, here’s a breakdown of session timeouts for both desktop and mobile logins:

 

Desktop:

🔹 SSO & User/Password: Client sessions remain valid for 6 hours.

🔹 Session timeout is fixed and cannot be adjusted per client.

 

Mobile:

📌 User/Password Login: Sessions remain active as long as the credentials (email/password) remain unchanged.

📌 Google & Azure (OIDC): Session duration is determined by the SSO provider.

 

SSO Providers:

✅ OKTA

• SAML (More Options Login): Session remains valid for 6 months before requiring reconnection.

• OIDC (App Login via OKTA): The session is controlled by OKTA.

 

✅ OneLogin (SAML)

• Auto-reconnect occurs every 6 hours.

• A full reconnection is required every 6 months.