For up-to-date product documentation, see the IBM MobileFirst Foundation Developer Center.

Configure the LTPA-based SSO security check

Learn how to configure the predefined MobileFirst LTPA-based single sign-on (SSO) security check.


The predefined LTPA-based single sign-on (SSO) security check (LtpaBasedSSO) has a single configurable property: expirationSec. This property sets the expiration period for a successful security-check state. The expiration period determines the minimal interval for invoking the check again after a successful execution.

We can configure the value of this expirationSec property, as outlined in the following procedure.

Note: The procedure explains how to use the IBM MobileFirstâ„¢ Platform Operations Console to configure the property value. Alternatively, we can also set the property value directly in the application-descriptor file. For detailed information, see Configuring application security-check properties.


  1. Open a MobileFirst Operations Console window. Select your application version from the Applications section of the navigation sidebar, and then select the application Security tab.
  2. In the Security-Check Configurations section, select Create New.
  3. In the Configure Security-Check Properties window, configure the LTPA-based SSO security check:
    1. In the Security Check field, select LtpaBasedSSO from the list.
    2. In the Expiration Period, Successful State (seconds) field, set your preferred expiration period for a successful state of the security check, in seconds.
    When the configuration is done, we can see and edit your LtpaBasedSSO security-check configuration in the Security-Check Configurations table of the application Security tab. See Configuring application security-check properties.

Parent topic: LTPA-based single sign-on (SSO) security check