An Access Manager user session is the interval between the moment a user logs in to a network resource protected by Access Manager, and the moment the user logs out of the resource. During the user session, the Access Manager Session Service maintains information about the interactions the user has with the various applications. Access Manager uses this information to enforce time-dependent rules such as timeout limits. Also during the user session, Access Manager provides continuous proof of the user’s identity. This proof of identity enables the user to access multiple enterprise resources without having to provide credentials each time.
The Access Manager Session Service enables the following types of user sessions:
Basic user session. The user provides credentials to log in to one application, and then logs out of the same application.
Single sign-on (SSO) session. The user provides credentials once, and can then access multiple applications within the same DNS domain.
Cross domain SSO (CDSSO) session. The user provides credentials once, and can then access applications among multiple DNS domains.