ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

SAML Assertion Validity - Max value


Article ID: 143543


Updated On:


CA API Gateway API SECURITY CA API Gateway Precision API Monitoring Module for API Gateway (Layer 7) CA API Gateway Enterprise Service Manager (Layer 7) STARTER PACK-7 CA Microgateway


The article addresses the issue for saml token validity , When trying to configure token validity for an application as 4 hours saml token assertion does not allow more than an hour.


The default the max saml token validity can be configured as one hour.


Release : 9.2

CA API Management Gateway


1. Save/Export policy to an XML.

2. Edit the XML and Increase the ConditionsNotBeforeSecondsInPast/ConditionsNotOnOrAfterExpirySeconds values to the needed. Ex: 4 hrs.

3. Save the XML.

4. Import the Saved XML.

5. Verify the usecase.

Additional Information

Saml Token Assertion documentation -