Integration Platform Technologies: Siebel Enterprise Application Integration > Web Services > About Siebel Authentication and Session Management SOAP Headers >

Session and Session Token Timeout-Related Parameters

You control the session timeout length and session token timeout length and maximum age by setting the parameters listed in Table 13. These parameters are set in the [eai_lang] section of the eapps.cfg file, which is located in the SWEAPP_ROOT\bin directory, where SWEAPP_ROOT is the directory in which you installed the SWSE.

Table 13. Session and Session Token Timeout-Related Parameters
Parameter Name
Parameter Value


Number in minutes

The total number of minutes a session can remain inactive before the user is logged out and the session is closed.


Number in minutes

The Siebel Web Server Extension (SWSE) rejects the session token if the token is inactive for more than the SessionTokenTimeout value. Whenever the token is used, this value is refreshed.

You typically set SessionTokenTimeout to the same length of time as the global parameter SessionTimeout, whose default is 900 seconds (15 minutes).


Number in minutes

The SessionTokenMaxAge parameter will make the SWSE reject the token if it has been used for more than the SessionTokenMaxAge value (for example, 240 minutes, or 4 hours). This is different from the SessionTokenTimeout because it does not refresh every time the token is used.

NOTE:  If you set the value of SessionTokenTimeout longer than the value of SessionTimeout and send a Web service request after the session times out, a relogin occurs and the request is executed.

For information on SessionTimeout, see Siebel Security Guide. For information on application configuration parameters in general, see Siebel System Administration Guide.

Integration Platform Technologies: Siebel Enterprise Application Integration Copyright © 2010, Oracle and/or its affiliates. All rights reserved. Legal Notices.