{"id":179,"date":"2007-10-01T16:56:34","date_gmt":"2007-10-01T20:56:34","guid":{"rendered":"http:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/"},"modified":"2008-05-14T06:01:24","modified_gmt":"2008-05-14T10:01:24","slug":"session-timeout-for-oracle-single-sig-on-server","status":"publish","type":"post","link":"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/","title":{"rendered":"Session Timeout for Oracle Single Sign-On Server"},"content":{"rendered":"

Idle Session Timeout <\/strong>is value (in minutes for Oracle Single Sign-On Server) after which user has to re-login, if they\u00a0are inacte (No Activity \/ Idle) during that time. It is recommended to set Idle Session time out (Global Inactivity timeout) for security reasons. By default there is No Value<\/strong> set for Idle Session Timeout for Oracle Single Sign-On Server Server which means any application (like portal, discoverer, BI, forms & reports) using Oracle Single Sign-on for authentication will NOT logout user session<\/strong> because of Inactivity (This can be a Security Risk<\/u>).<\/p>\n

Default Session Time Out value for Oracle E-Business Suite 11i\/R12 is 30 Minutes to know more about Idle Session timeout in Oracle Apps 11i, R12 check my previous post at Idle Session in Oracle Apps R12, 11i<\/a><\/p>\n

Default Session Timeout for Apps 11i\/R12 integrated with Single Sign-On Server
<\/strong>——————————————————————————–
For Oracle E-Business Suite (Apps 11i\/R12) Customers integrated with Oracle Single Sign-On, default session time out for E-Business Suite\/11i\/R12 is 30 minutes where as no value for SSO which means If Apps User try to access apps after 30 minutes of Inactivity, user will get warning that session timeout and prompted to re-login.\u00a0This will take user to new window and user without actually typing user name password can re-login<\/strong> to Apps<\/em>.<\/p>\n

The reason behind this security loop hole is that user logged out from Apps 11i\/R12 after 30 minutes of inactivity but user cookie is still valid on SSO<\/strong>(as no idle session time out set on SSO Server) and user can re-login to apps without entering password<\/strong> as its authenticated by SSO server.<\/p>\n

How to avoid this situation<\/strong>\u00a0?
\nMake Idle Session Timeout for Oracle SSO server in line with Apps 11i\/R12<\/p>\n

How to set Session Time out or Global Inactivity Timeout for Oracle Single Sign-On Server
<\/strong>—————————————————————————————–<\/p>\n

1. Execute ssogito.sql from $ORACLE_HOME\/sso\/admin\/plsql\/sso\u00a0 (on SSO Tier) as orasso schema
\n2. There are few more steps on SSO server which you can find in link below
\u00a0<\/p>\n

Oracle Documentation
<\/strong>———————————
\nConfiguring the Global User Inactivity Timeout at Global Inactivity Timeout in Oracle SSO Server<\/a><\/p>\n

You can subscribe to posts<\/strong> from this site\u00a0in your mail box\u00a0from right menu bar\u00a0and contact me using Contact Us<\/strong> page on this site for feedback and things you like to see on this site.<\/p>\n

 <\/p>\n

Related Docs<\/u><\/strong><\/p>\n

357687.1<\/strong> – How to Verify if mod_osso Global Inactivity Timeout (GITO) is Working
\n301894.1<\/strong> – What is the difference between the SSO session duration timeout and the global inactivity timeout values
\n340708.1<\/strong> – Global Inactivity TimeOut (GITO) does not work
\n561224.1<\/strong> – Where In The Metadata Repository Database Is The GITO Cookie Name Stored?
\n445336.1<\/strong> – SSO Global Inactivity Timeout Is Not Protecting the Customize Link
\n418385.1<\/strong> – Interminent 500 Internal Server Error accessing Production with SSO GIT set on Test system<\/p>\n","protected":false},"excerpt":{"rendered":"

Idle Session Timeout is value (in minutes for Oracle Single Sign-On Server) after which user has to re-login, if they\u00a0are […]<\/p>\n","protected":false},"author":115,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[51,40],"tags":[50,49],"class_list":["post-179","post","type-post","status-publish","format-standard","hentry","category-session","category-sso","tag-idle-session","tag-session-timeout"],"yoast_head":"\nSession Timeout for Oracle Single Sign-On Server -<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Session Timeout for Oracle Single Sign-On Server -\" \/>\n<meta property=\"og:description\" content=\"Idle Session Timeout is value (in minutes for Oracle Single Sign-On Server) after which user has to re-login, if they\u00a0are […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/\" \/>\n<meta property=\"article:published_time\" content=\"2007-10-01T20:56:34+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2008-05-14T10:01:24+00:00\" \/>\n<meta name=\"author\" content=\"Masroof Ahmad\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Masroof Ahmad\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/\",\"url\":\"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/\",\"name\":\"Session Timeout for Oracle Single Sign-On Server -\",\"isPartOf\":{\"@id\":\"https:\/\/onlineappsdba.com\/#website\"},\"datePublished\":\"2007-10-01T20:56:34+00:00\",\"dateModified\":\"2008-05-14T10:01:24+00:00\",\"author\":{\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb\"},\"breadcrumb\":{\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/onlineappsdba.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Session Timeout for Oracle Single Sign-On Server\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/onlineappsdba.com\/#website\",\"url\":\"https:\/\/onlineappsdba.com\/\",\"name\":\"\",\"description\":\"Oracle Implementation & Training Experts\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/onlineappsdba.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb\",\"name\":\"Masroof Ahmad\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g\",\"caption\":\"Masroof Ahmad\"},\"url\":\"https:\/\/onlineappsdba.com\/index.php\/author\/masroof\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Session Timeout for Oracle Single Sign-On Server -","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/","og_locale":"en_US","og_type":"article","og_title":"Session Timeout for Oracle Single Sign-On Server -","og_description":"Idle Session Timeout is value (in minutes for Oracle Single Sign-On Server) after which user has to re-login, if they\u00a0are […]","og_url":"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/","article_published_time":"2007-10-01T20:56:34+00:00","article_modified_time":"2008-05-14T10:01:24+00:00","author":"Masroof Ahmad","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Masroof Ahmad","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/","url":"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/","name":"Session Timeout for Oracle Single Sign-On Server -","isPartOf":{"@id":"https:\/\/onlineappsdba.com\/#website"},"datePublished":"2007-10-01T20:56:34+00:00","dateModified":"2008-05-14T10:01:24+00:00","author":{"@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb"},"breadcrumb":{"@id":"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/onlineappsdba.com\/index.php\/2007\/10\/01\/session-timeout-for-oracle-single-sig-on-server\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/onlineappsdba.com\/"},{"@type":"ListItem","position":2,"name":"Session Timeout for Oracle Single Sign-On Server"}]},{"@type":"WebSite","@id":"https:\/\/onlineappsdba.com\/#website","url":"https:\/\/onlineappsdba.com\/","name":"","description":"Oracle Implementation & Training Experts","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/onlineappsdba.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb","name":"Masroof Ahmad","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g","caption":"Masroof Ahmad"},"url":"https:\/\/onlineappsdba.com\/index.php\/author\/masroof\/"}]}},"_links":{"self":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts\/179","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/users\/115"}],"replies":[{"embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/comments?post=179"}],"version-history":[{"count":0,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts\/179\/revisions"}],"wp:attachment":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/media?parent=179"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/categories?post=179"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/tags?post=179"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}