To configure session quota constraints, the top-level OpenSSO Enterprise administrator (such as amAdmin) must set specific attributes in the OpenSSO Enterprise Console for one of the OpenSSO Enterprise instances in your deployment.
By default, the COS priority for realm is set to medium, which is a value of 3 in OpenSSO Enterprise. The OpenSSO Console doesn't support changing the priority for realm-level service attributes. The Console supports only changing the priority for role-level service attributes. Therefore, in the OpenSSO Console, you can change the role priority to either higher or lower than the realm priority, to get the session attributes from the either the realm or role level.
Log in to OpenSSO Enterprise Console as amAdmin.
Click Configuration, Global and then Session.
On the Session page, set Enable Quota Constraints to ON.
When this attribute is enabled, OpenSSO Enterprise enforces session quota constraints whenever a user attempts to log in as a new client and create a new session.
On the Session page, for each session attribute, either accept the default value or set a value as required for your deployment.
If you are configuring session property change notifications , see Configuring Session Property Change Notifications.
When you have finished setting attributes, click Save.
If you reset any of these attributes, you must restart the server for the new values to take effect.