j5onj (j5onj) asked a question.
Log-In Prompt frequently even though Session Token lifetime is set to 3 months
Hello dear Okta Support Team,
We host a web app in Azure and we authenticate using Okta (MFA - security question).
Even though our Session Token lifetime is set to 3 months, users get asked to log in pretty frequently - it happens to me at least once a day.
Also, in the web config, we have this set:
<cookieHandler requireSsl="true" persistentSessionLifetime="365:0:0"/>
What do you suggest we try to do?
Is there anyway to enforce the cookie lifetime and to keep users logged in for 3 months even if they close the browser?
We also embed this web app inside a mobile app, and it is critical that users are not logged out.
Best regards,
Denis
Hello Denis,
I've escalated your question to our Customer Support team. They will respond to you shortly here.
Thanks!
Tim
Okta, Inc.
Hello Denis
My name is Michael Hidalgo with Okta support and I will gladly assist you with this case.
The login session time is controlled by the application even if you are authenticating with Okta, I suggest you to contact Azure support to check why the application is terminating the session frequently.