Adding the session activity timestamp
About this task
WebSEAL calculates the session activity timestamp by adding together the following three values:
- Current® system time.
For example: 13:30
- Maximum time (seconds) that a user's session can remain inactive.
The maximum lifetime for inactive cache entries is set in the [session] stanza in the WebSEAL configuration file. For example
[session] inactive-timeout = 600The default value is 600 seconds.
- Time interval (seconds) between updates to the failover authentication
cookie.
This value is set in the [failover] stanza in the WebSEAL configuration file. For example:
[failover] failover-update-cookie = 300The default value is
-1seconds. For more information, see Addition of an interval for updating the activity timestamp.
The timestamp value in this example is 13:50.
Procedure
Edit the WebSEAL configuration file and add the following
entry:
[failover-add-attributes]
session-activity-timestamp = addNote: The attribute cannot
be set by wildcard matching. The exact entry session-activity-timestamp must
be entered.
Note: When you set failover-update-cookie to
a number greater than zero, ensure that you also set
session-activity-timestamp
= add. If you do not set session-activity-timestamp
= add, WebSEAL decodes the failover cookie on each user access.
This repetitive action could adversely affect performance.