Set the Inactivity Timer to Prevent Unauthorized System Access
Oracle recommends that you set the inactivity timer to prevent unauthorized access to your system as soon as possible.
The inactivity timer logs off the user from the OCSDM session when its value is exceeded. The user must re-enter their password to continue. You can set different values for a user with administrative permissions and users who do not have administrative permissions.
Note:
The default inactivity timer value for an administrator is set to zero (never expire). You must choose a different value to terminate a user session after a specified time period.