<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008OMnWhSALOkta Classic EngineMulti-Factor AuthenticationAnswered2024-03-25T23:41:46.000Z2018-10-02T15:44:08.000Z2018-10-08T16:42:29.000Z

idcp0 (idcp0) asked a question.

Edited October 2, 2018 at 3:44 PM
EnforceTimeoutVersionAgnostic

Good Morning,

 

We are implementing Okta MFA for RDPing into certain systems, and had a question about this particular setting EnforceTimeoutVersionAgnostic

 

 

 

The description states - Enforce timeout for both Windows 2012 and 2016. 

 

So if it is set to true - Where is this timeout coming from?

 

and if set to false - it will honor the windows rdp timeout set in GPO

 

Reference: help.okta.com/en/prod/Content/Topics/Security/proc-mfa-win-creds-rdp.htm

 

 

Thanks!

  • 2 answers
  • 815 views

  • alexandru.preda1.485391231955779E12 (Okta, Inc.)

    Hi Robert, 

     

    Without using "EnforceTimeoutVersionAgnostic" or setting it to false, it will honor the windows RDP timeout set in GPO. 

     

    When EnforceTimeoutVersionAgnostic is set to true, you will need to define the values for "ErrorTimeOutInSeconds" and "WidgetTimeOutInSeconds" as those are the values that will be enforced. 

     

    I hope this helps, but if you have further questions or concerns, please open a ticket with us and we`ll be happy to assist. 

     

    Best regards,

     

    Alexandru Preda

    Technical Support Engineer

    Okta Global Customer Care

    Expand Post
    Selected as Best

  • alexandru.preda1.485391231955779E12 (Okta, Inc.)

    Hi Robert, 

     

    Without using "EnforceTimeoutVersionAgnostic" or setting it to false, it will honor the windows RDP timeout set in GPO. 

     

    When EnforceTimeoutVersionAgnostic is set to true, you will need to define the values for "ErrorTimeOutInSeconds" and "WidgetTimeOutInSeconds" as those are the values that will be enforced. 

     

    I hope this helps, but if you have further questions or concerns, please open a ticket with us and we`ll be happy to assist. 

     

    Best regards,

     

    Alexandru Preda

    Technical Support Engineer

    Okta Global Customer Care

    Expand Post
    Selected as Best

  • mike.davie1.5312945692819849E12 (Customer First Programs)

    Hello Robert,

     

    Thanks for posting your inquiry in Okta Community Portal.

     

    If you receive a great answer to your question(s), please help readers find it by marking it the best answer. Hover over the answer and click "Best Answer."

     

    Thank you,

    Mike Davie

    Okta Help Center

    Expand Post
This question is closed.
Loading
EnforceTimeoutVersionAgnostic