Setting an SSO token lifetime

Identity-federation standards require a window of time during which a SSO token is considered valid. Each SSO token has an issuance time-stamp element and elements indicating the allowable lifetime of the SSO token before and after the issuance time stamp.

Before you begin

For previous steps in configuring Browser SSO, see Choosing SAML 2.0 profiles. For more information about managing service provider (SP) connections, see Accessing SP connections.

About this task

PingFederate gives you the option to change the valid lifetime of the single sign-on (SSO) token.

Steps

Optional: Override the default values for the following fields.

Field	Description
Minutes Before	The amount of time before the SSO token was issued during which it is to be considered valid.
Minutes After	The amount of time after the SSO token was issued during which it is to be considered valid.

Field

Description

Minutes Before

The amount of time before the SSO token was issued during which it is to be considered valid.

Minutes After

The amount of time after the SSO token was issued during which it is to be considered valid.

The default value is 5 minutes for both fields.

Click Next to save your changes.

PingFederate Server

Setting an SSO token lifetime

Before you begin

About this task

Steps