Release NotesFederation Security Services Release NotesDefects Fixed in the Policy Server 6.0 SP6 Option PackFixes in the Policy Server 6.0 SP6 Option Pack › SessionNotOnOrAfter Parameter Could Not Be Modified (128759,109961)

Previous Topic: Restarting Policy Server to Immediately Register a New Certificate Not Documented (113000)

Next Topic: Defects Fixed in the Web Agent 6.x QMR 6 Option Pack
SessionNotOnOrAfter Parameter Could Not Be Modified (128759,109961)

Symptom:

When the SiteMinder IdP generates an assertion, it included a parameter named SessionNotOnOrAfter in the Authentication statement of the assertion. This parameter was set to the assertion validity duration by default and it could not be customized or omitted from the assertion.

Solution:

The SessionNotOnOrAfter parameter can now be customized or left out of the assertion by configuring the SP Session Validity Duration setting in the Policy Server User Interface. The Federation Security Services Guide has detailed instructions.

STAR Issue: 19635319