Retrieving the maximum concurrent sessions policy value

Retrieving the maximum concurrent sessions policy value

We can use the maximum concurrent sessions policy (pdadmin policy set max-concurrent-web-sessions) to control the number of sessions each user can have at one time in a distributed session cache environment.
By default, this policy is enabled:
[session] enforce-max-sessions-policy = yes

As the administrator, we can apply this policy to a specific user or apply the policy globally to all users registered in this secure domain. The policy is stored in the ISAM user registry. To be enforced by the authentication process in a distributed session cache environment, the policy must be retrieved from the registry and stored as an extended attribute in each user's credential.
Parent topic: Distributed session cache configuration for WebSEAL