Setting an SSO token lifetime
Identity-federation standards require a window of time during which a SSO token is considered valid. Each SSO token has an issuance time-stamp element and elements indicating the allowable lifetime of the SSO token before and after the issuance time stamp.
Before you begin
For previous steps in configuring Browser SSO, see Choosing SAML 2.0 profiles. For more information about managing service provider (SP) connections, see Accessing SP connections.
About this task
PingFederate gives you the option to change the valid lifetime of the single sign-on (SSO) token.
Steps
-
Optional: Override the default values for the following fields.
Field Description Minutes Before
The amount of time before the SSO token was issued during which it is to be considered valid.
Minutes After
The amount of time after the SSO token was issued during which it is to be considered valid.
The default value is 5 minutes for both fields.
-
Click Next to save your changes.