session token expiration Skip to main content
https://support.okta.com/help/answers?id=9062a000000xa1vqas&refurl=http%3a%2f%2fsupport.okta.com%2fhelp%2fanswers
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
1
2
3
4
5
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
Ask Search:
Madhav GokhlayMadhav Gokhlay 

session token expiration

After issuing a authn call such as https://companyName.oktapreview.com/api/v1/authn we get a session token that has expiresAt attribute value. How can an administrator control the expiration interval? It seems to be set at 4 hours, but how can it be controlled?
Kevin TurnerKevin Turner (Okta, Inc.)
Hi Madhav

Its all to do with Okta Sign-On policies. In the admin console, if you select Security, Policies and select the Sign-On tab, you can set different sign-on requirements for different types of users.
User-added image

Within each policy, you can have different rules, and in each rule you can assign different time out values. By clicking the pencil on say the Admin rule, you will be presented a page where for the MFA or the Session you can associate different values from mins, hours to even days.
User-added image

Hope that helps
Madhav GokhlayMadhav Gokhlay
Kevin, Thanks for your email. However the images you included (presumably screen shots) in your email are not showing at my end. Can you please resend? Thanks, Madhav
Kevin TurnerKevin Turner (Okta, Inc.)
This is strange. Have your tried viewing them in the browser against the question that you raised, or just in the email that got returned? I have also just sent an email with the images attached to help (hopefully).

Regards.