---
title: Fine-tuning assertion validity duration
description: Configure the SAML assertion validity duration for the Microsoft 365 application in PingOne.
component: pingone
page_id: pingone:applications:p1_fine-tuning_assertion_validity_duration
canonical_url: https://docs.pingidentity.com/pingone/applications/p1_fine-tuning_assertion_validity_duration.html
section_ids:
  before-you-begin: Before you begin
  steps: Steps
  next-steps: Next steps
---

# Fine-tuning assertion validity duration

You can configure the assertion validity duration to set the maximum amount of time before the SAML assertion expires for the Microsoft 365 application in PingOne. The assertion validity duration applies only to SAML assertions as a result of successful passive profile sign-on attempts and not to active profile sign-ons. Learn more in [Adding Microsoft 365 to allow users to sign on using PingOne](p1_adding_microsoft_365.html).

## Before you begin

[Add a Microsoft 365 application](p1_adding_microsoft_365.html) in PingOne.

## Steps

1. In the PingOne admin console, go to **Applications > Applications** and click the **Microsoft 365 application** in the **Applications** list.

2. If you haven't already, click **Enable Advanced Configuration** on the **Overview** tab and click **Enable** in the confirmation modal.

   ![A screenshot of Enable Advanced Configuration button on the Overview tab.](_images/p1-microsoft-365-application-enable-advanced-configuration.png)

3. On the **Configuration** tab, click the **Pencil** icon ([icon: pencil, set=fa]).

4. For **Assertion Validity Duration (in seconds)**, edit the value only if your application requires a different duration than the default value of 300 seconds (5 minutes).

   For example, if an application requires a validity duration of 30 minutes, enter `1800` for the value (in seconds).

5. Click **Save**.

## Next steps

[Set the WS-Trust version](p1_setting_ws-trust_version.html) for passive profile sign-ons to the Microsoft 365 application.