Once user session reaches the max timeout defined in the partnership, the application becomes unresponsive, and none of the onscreen buttons work. The only way out of this seems to be refreshing the URL, which takes the user through ADFS login.
Application logic is driving this behavior since the web agent responds exactly the same way whether max or idle timeout is reached. The application in question is handling idle timeouts as expected and only showing the problem with max timeout. It also doesn't matter whether the user obtained the session via a configured Siteminder authentication scheme or a federation partnership: max and idle timeout settings are set during authentication, regardless of the authentication method.
Release : 12.8
Component : SITEMINDER -POLICY SERVER
Application logic is driving this behavior as Siteminder will take the same action for idle timeout as it will for max timeout being reached. Examine and fix the application logic.