Default SSO token timeout is 480 minutes. You should reduce the SSO token timeout, for example, to 60 minutes to minimize token reuse if it is exposed. See “Setting Security Options” in the Oracle Hyperion Enterprise Performance Management System User and Role Security Guide.