Session

The session attributes allow you to configure session information for a additional site and server instances.

Session Limits

The following attributes set server session limits:

Maximum Sessions

Default value is 5000. Specify the maximum number of allowable concurrent sessions. Login sends a Maximum Sessions error if the maximum concurrent sessions value exceeds this number.

Invalidate Session Max Time

Default value is 3. Specifies the number of minutes after which the invalid session will be removed from the session table if it is created and the user does not login. This value should always be greater than the timeout value in the Authentication module properties file.

Session Purge Delay

Default value is 0. Specifies the number of minutes to delay the purge session operation. After a session times out, this is an extended time period during which the session continues to reside in the session server. This property is used by the client application to check if the session has timed out through SSO APIs. At the end of this extended time period, the session is destroyed. The session is not sustained during the extended time period if the user logs out or if the session is explicitly destroyed by an OpenSSO Enterprise component. The session is in the INVALID state during this extended period.

Statistics

The following attributes set statistical configuration:

Logging Interval

Default value is 60. Specifies number of minutes to elapse between statistics logging. Minimum is 5 seconds to avoid CPU saturation. OpenSSO Enterprise assumes any value less than 5 seconds to be 5 seconds.

State

Default value is file. Specifies location of statistics log. Possible values are:

• off — No statistics are logged.

• file — Statistics are written to a file under the specified directory.

• console — Statistics are written into Web Server log files.

Directory

Value is set during installation. Example: OpenSSO Enterprise-base/server-URI/stats. Specifies directory where debug files are created.

Enable Host Lookup

Default value is false. Enables or disables host lookup during session logging.

Notification

The following attributes set notification configuration:

Notification Pool Size

Default value is 10. Defines the size of the pool by specifying the total number of threads.

Notification Thread Pool Threshold

Default value is 100. Specifies the maximum task queue length. When a notification task comes in, it is sent to the task queue for processing. If the queue reaches the maximum length, further incoming requests will be rejected along with a ThreadPoolException, until the queue has a vacancy.

Validation

The following attribute sets validation configuration:

Case Insensitive Client DN Comparison

Default value is true. Compares the Agent DN. If the value is false, the comparison is case-sensitive.