Add the session activity timestamp

WebSEAL calculates the session activity timestamp by adding together the following three values:

• Current system time.

  For example: 13:30

• Maximum time (seconds) that a user's session can remain inactive.

  The maximum lifetime for inactive cache entries is set in the [session] stanza in the WebSEAL configuration file. For example

  [session]
  inactive-timeout = 600

  Default is 600 seconds.

• Time interval (seconds) between updates to the failover authentication cookie.

  This value is set in the [failover] stanza in the WebSEAL configuration file. For example:

  [failover]
  failover-update-cookie = 300

  The default value is -1 seconds. For information, see Addition of an interval for updating the activity timestamp.

The timestamp value in this example is 13:50.

Edit the WebSEAL configuration file and add the following entry:

[failover-add-attributes]
session-activity-timestamp = add

The attribute cannot be set by wildcard matching. The exact entry session-activity-timestamp must be entered. When we set failover-update-cookie to a number greater than zero, ensure that you also set session-activity-timestamp = add. If we do not set session-activity-timestamp = add, WebSEAL decodes the failover cookie on each user access. This repetitive action could adversely affect performance.

Parent topic: Failover authentication configuration