Add the session activity timestamp
WebSEAL calculates the session activity timestamp by adding together the following three values:
- Current system time.
For example: 13:30
- Maximum time (seconds) that a user's session can remain inactive.
The maximum lifetime for inactive cache entries is set in the [session] stanza in the WebSEAL configuration file. For example
[session] inactive-timeout = 600Default is 600 seconds.
- Time interval (seconds) between updates to the failover authentication cookie.
This value is set in the [failover] stanza in the WebSEAL configuration file. For example:
[failover] failover-update-cookie = 300The default value is -1 seconds. For information, see Addition of an interval for updating the activity timestamp.
The timestamp value in this example is 13:50.
Edit the WebSEAL configuration file and add the following entry:
[failover-add-attributes] session-activity-timestamp = addThe attribute cannot be set by wildcard matching. The exact entry session-activity-timestamp must be entered. When we set failover-update-cookie to a number greater than zero, ensure that you also set session-activity-timestamp = add. If we do not set session-activity-timestamp = add, WebSEAL decodes the failover cookie on each user access. This repetitive action could adversely affect performance.Parent topic: Failover authentication configuration