Limit policy based session access mobile refresh token interval [New in Security Center 1.5]

릴리스 버전: Australia

업데이트 날짜 2026년 03월 12일

소요 시간: 2분

Use the glide.authenticate.session_access.mobile.refresh_token_interval property to govern the length of time that must elapse before a mobile device user will be forced to re-authenticate.

A user will be asked to re-authenticate only if the admin has configured the Identity Provider attributes in the session policy (attributes can vary each login), and the user authenticates using Single Sign On (SSO). The default value represents the time in seconds that a user has before being re-authenticated. A larger default value provides a bad actor more time for session access in the event of a session hijacking.

More information


Attribute	Description
Configuration name	glide.authenticate.session_access.mobile.refresh_token_interval
Configuration type	System Properties (/sys_properties_list.do)
Data type	integer
Recommended value	1800 (seconds)
Default value	1800 (seconds)
Category	Session management
Security risk	Severity score: 4.3 CVSS score: Medium Security risk details: If the ZTA policy is enabled on the instance, then users who are using SSO during mobile login will be forced to logout and re-login after the default value of 1800 seconds (30 minutes) have eclipsed. If a higher value is used, then users will be forced to wait that elapsed time.
Dependencies and prerequisites	Zero Trust- Policy Based Session Access
Functional impact	This setting governs the time in seconds after login, that users will be forced to logout from mobile devices if they are using Single Sign On to authenticate, and admin has configured the Identify provider attributes in the session access policy.