When you successfully log into the CA Executive Insight application using an Internet browser, a new authenticated session is created for you. The session data are passed to the browser (as a cookie) and used in the subsequent requests to identify the user without going through the full authentication process with the CA EEM server. However, for security reasons, the session validity has its limitation that can be configured as needed.
The session limitations are stored in the CA Executive Insight database in the tenant_settings table as follows:
|
id |
DisplayName |
name |
value |
|---|---|---|---|
|
6 |
Browser session automatic re-authentication minutes |
sessionReAuthenticationMins |
30 |
|
5 |
Browser inactive session expiration hours |
sessionExpirationHours |
24 |
Specifies the re-authentication period in minutes. This is how long a user session is valid without a re-authentication with the CA EEM Server. When this period expires a user session is automatically re-authenticated with the CA EEM server. If the re-authentication fails, you need to re-login to CA Executive Insight.
Default: 30
Limits: Minimum 10, Maximum 180
Specifies the expiration period in hours. This is how long an inactive user session is valid without a user re-login. When this period expires, you will be prompted to re-login into CA Executive Insight.
Default: 24
Limits: Minimum 6, Maximum 72
To change the session authentication limits, you can use an SQL update query. For example, the following query sets Browser session automatic re-authentication minutes to 60.
UPDATE tenant_settings SET value=60 WHERE id=6;
For the change to take effect, you must restart the CA Executive Insight's server. At server startup, the session authentication limits are validated. If a value is less than its minimum value or greater than its maximum value, the default value is used and an error message is displayed in the CA Executive Insight server log.
|
Copyright © 2014 CA.
All rights reserved.
|
|