Activate Limit Concurrent Sessions Plugin

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • Configure the com.glide.limit.concurrent.sessions plugin to reduce the chance of session hijacking on your instance.

    The Limit Concurrent Sessions plugin (com.glide.limit.concurrent.sessions) allows an administrator to limit the number of active sessions per user/role. It is recommended this plugin be enabled and configured to reduce the likelihood of session hijacking. If this plugin is enabled and configured, there will be a limit to the number of open sessions that can be hijacked.

    More information

    Attribute Description
    Configuration name
    • com.glide.limit.concurrent.sessions (plugin)
    • glide.authenticate.limit.concurrent.interactive.sessions(system property)
    • glide.authenticate.max.concurrent.interactive.sessions(system property)
    Configuration type System Properties (/sys_properties_list.do)
    Data type
    • plugin
    • system property (Boolean)
    • system property (Integer)
    plugin
    Recommended value
    • com.glide.limit.concurrent.sessions is enabled
    • glide.authenticate.limit.concurrent.interactive.sessions system property set to true
    • glide.authenticate.max.concurrent.interactive.sessions set to a numeric value depending on the needs of your organization.
    Default value None
    Category Session management
    Security risk
    • Severity score: 3.7
    • CVSS score: Low
    • Security risk details: Higher numbers of active concurrent sessions creates security risk by increasing the attack surface for account compromise, making it harder to detect unauthorized access and enforce session accountability across devices and locations.
    Dependencies and prerequisites None