Register
Ask the Community

About michiel.jeuken

since ‎12-06-2018
‎09-14-2020
michiel.jeuken
Occasional Contributor

Re: Enforce session timeout when user is active f...

by in Idea Exchange
‎11-19-2019 02:27 AM
‎11-19-2019 02:27 AM
According to Rob Marshall (Anaplan): two types of timeouts where the user will need to reauthenticate: After 30 minutes of inactivity We also have a “wellness timeout” which is at 12 hours.  Meaning, if a user is logged in and has been doing work consistently, they will be required to reauthenticate at the 12 hour mark.  We call it a “wellness” timeout, but it could also be referred to as a “get a life” timeout This is not (yet) documented, assuming this is indeed the case -> wellness timeout is meeting our company MC control ... View more

Re: Ability for customers to set time frame for wh...

by in Idea Exchange
‎10-18-2019 02:49 AM
‎10-18-2019 02:49 AM
For authentication assurance level 3 (AAL3), the following controls apply which require a tenant an/or model specific session Time out setting: Reauthentication: 12 hours or 15 minutes inactivity; SHALL use both authentication factors ... View more

Enforce session timeout when user is active for l...

by in Idea Exchange
‎10-17-2019 09:10 AM
1 Kudo
‎10-17-2019 09:10 AM
1 Kudo
To enforce a re-authentication for a user per tenant. This is a company security requirement for systems working with Most Confidential data. The requirements are session re-authentication in 12 hours or 15 minutes inactivity The max period a user can stay active should be configurable or potential be specified as an assertion or time value in the SAML token (SSO) for Anaplan to act upon. Currently Anaplan user can stay in the system for days as long as user stays active (e.g. using a robot) ... View more
See more ideas labeled with:
My kudoed posts
View All
My kudoed posts
View All
Kudos from
Kudos given to
View All