Setup Workspace Sign In Timeout

You will normally be active for 72 hours in Workspace. (2 weeks if you select "Keep me signed in"). You can change the expiration time for Azure and Workspace.

Make sure you set "Workspace .FormAuth" longer than "AccessTokenLifeTime" so these never have the same expiration period. This allows them to refresh each other.


Setup Azure AD expiration time

To change the token lifetime policy:

  1. You need to download the Azure AD PowerShell Module.
  2. Run Windows PowerShell as an Administrator.
  3. Run the command "Install-Module -Name AzureADPreview" to download the Azure AD PowerShell Module.
    PS C:\Windows\system32> Install-Module -Name AzureADPreview
  4. Run the command "Connect-AzureAD -Confirm" and login with your Workspace Primary Admin account.
    PS C:\Windows\system32> Connect-AzureAD -Confirm

    After this is done, you can run the command below. This will set the Token Lifetime to 1 day(24 hours).
  new-azureadpolicy -Definition @('{"TokenLifetimePolicy":{"Version":1,"AccessTokenLifetime":"01:00:00","MaxAgeSessionSingleFactor":"23:59:00"}}')
  -DisplayName IctivityTest -Type TokenLifetimePolicy


Setup Workspace Sign in Cookie Expiration time

Standard is the Sign in Cookie Expiration time 24 hours. We advise only to change these settings during non-production hours. 

To change the Expiration token:

  1. Go to the Workspace root.
  2. Open Web.Config and find the following token.
            <!-- 1400 is 1 day, it's a sliding expiration though -->
    <forms name=".FormAuth" timeout="1440" slidingExpiration="true" cookieless="UseCookies" requireSSL="true" />
  3. Set up "timeout="1440"" to the limit you want.
  4. Save the config.

Note: Be aware that you have to re-do this after an update, we will add this to our update process as soon as possible, expected from update V2.75.0.