Limit guest's active session life span

Release version: Australia

Updated May 29, 2026

1 minute to read

Use the glide.guest.active.session.life_span property to control the duration of an active guest's HTTP sessions.

The glide.guest.active.session.life_span system property enforces a maximum lifespan on active guest HTTP sessions, regardless of session inactivity. The configured value is in minutes. A value of 0 disables the lifespan limit entirely, allowing sessions to persist until the inactive timeout fires. Guest users are unauthenticated users who access the instance without logging in.

Set the glide.guest.active.session.life_span system property to 720.

More information


Attribute	Description
Configuration name	glide.guest.active.session.life_span
Configuration type	System Properties (/sys_properties_list.do)
Data type	Integer
Recommended value	720
Default value	0
Fallback value	0
Category	Session management
Security risk	Severity score: 4.2 CVSS score: Medium Security risk details: A larger maximum lifespan could allow an attacker to persist a stolen session for longer, increasing the scope of a security incident.
Functional impact	This configuration enforces max life-span on active guest HTTP sessions irrespective of inactive timeout. The configured value is in minutes. A value of zero disables the lifespan limit entirely. The max life-span should be more than the inactive timeout glide.ui.session_timeout (default 30 minutes).
Dependencies and prerequisites	None