ReauthenticationEdit online This section contains the following topics: Reauthentication conceptsVerify Identity Access WebSEAL can force a user to perform an additional login (reauthentication) to ensure that a user who is accessing a protected resource is the same person who initially authenticated at the start of the session. Forced reauthentication provides additional protection for sensitive resources in the secure domain.Reauthentication based on security policyReauthentication POP: creating and applyingReauthentication based on session inactivityEnabling of reauthentication based on session inactivityResetting of the session cache entry lifetime valueExtension of the session cache entry lifetime valuePrevention of session removal when the session lifetime expiresRemoval of a user session at login failure policy limitCustomization of login forms for reauthenticationWebSEAL supports reauthentication for both forms authentication methods.Parent topic: Advanced authentication methodsRelated conceptsMultiplexing proxy agentsSwitch user authenticationAuthentication strength policy (step-up)External authentication interfaceClient Certificate User MappingAuthenticated User MappingExternal user mappingPassword strength