How to change the session timer which causes CA Performance Center users to be automatically logged off because of idle time.
While working with Dashboards, a user can just be logged off in the middle of whatever they are doing.
Instructions:
Adjust the values of Sso 'CookieTimeoutMinutes' and Sso 'RememberMeTimeoutDays' which are settable via SsoConfig under Single Sign-On:
For the purpose of this example, we will be changing the values of CookieTimeoutMinutes (default 20 (minutes) )to 120 minutes
and RememberMeTimeoutDays (default 15 (days) to 30 days:
1. Logon to the CAPC system as root or sudo
2. cd /opt/CA/PerformanceCenter/sso/bin
3. Launch the SsoConfig utility:
./SsoConfig
SSO Configuration:
1. CA Performance Center
Choose an option > 1
SSO Configuration/CA Performance Center:
1. LDAP Authentication
2. SAML2 Authentication
3. Performance Center
4. Single Sign-On
5. Test LDAP
6. Export SAML2 Service Provider Metadata
Choose an option > 4
SSO Configuration/CA Performance Center/Single Sign-On:
Anonymous User Enabled: Disabled
Anonymous User ID: 2
Localhost User Sign-In Page Enabled: Disabled
Localhost User Enabled: Enabled
Localhost User ID: 1
Cookie Timeout Minutes: 20
Encryption Decryption Key: #$utP9%z
Encryption Algorithm: DES
Failed Sleep Seconds: 3
Remember Me Enabled: Enabled
Remember Me Timeout Days: 15
Scheme: https
Port: 8382
Virtual Directory: sso
1. Remote Value
2. Local Override
Choose an option > 1
SSO Configuration/CA Performance Center/Single Sign-On/Remote Value:
1. Anonymous User Enabled:
2. Anonymous User ID:
3. Localhost User Sign-In Page Enabled:
4. Localhost User Enabled:
5. Localhost User ID:
6. Cookie Timeout Minutes:
7. Encryption Decryption Key:
8. Encryption Algorithm:
9. Failed Sleep Seconds:
10. Remember Me Enabled:
11. Remember Me Timeout Days:
12. Scheme: https
13. Port: 8382
14. Virtual Directory:
Select a Property >6
Property: Cookie Timeout Minutes (Remote Value)
Value: 20
Example: 20
Description: This field specifies the number of minutes that pass before a Single Sign-On cookie expires. Each time a user does something the cookie timeout starts over. However, if the cookie does timeout then the user is required to reauthenticate. It is recommended that this value match the default ASP.NET session timeout of 20 minutes.
Enter r to reset the value, u to update to new value > u
Enter \q to quit or \b to go back to previous menu
Enter new value > 120
SSO Configuration/CA Performance Center/Single Sign-On/Remote Value:
1. Anonymous User Enabled:
2. Anonymous User ID:
3. Localhost User Sign-In Page Enabled:
4. Localhost User Enabled:
5. Localhost User ID:
6. Cookie Timeout Minutes: 120
7. Encryption Decryption Key:
8. Encryption Algorithm:
9. Failed Sleep Seconds:
10. Remember Me Enabled:
11. Remember Me Timeout Days: 15
12. Scheme: https
13. Port: 8382
14. Virtual Directory:
Select a Property > 11
Property: Remember Me Timeout Days (Remote Value)
Value: 15
Example: 15
Description: This field is used only if the Remember Me Enabled field is checked. It specifies the number of days that will pass before a user that checked Remember Me on the sign-in page has to reauthenticate. If this field is set to 0 then the Remember Me setting will not expire until the user hits the "Sign Out" link.
Enter r to reset the value, u to update to new value > u
Enter \q to quit or \b to go back to previous menu
Enter new value > 30
SSO Configuration/CA Performance Center/Single Sign-On/Remote Value:
1. Anonymous User Enabled:
2. Anonymous User ID:
3. Localhost User Sign-In Page Enabled:
4. Localhost User Enabled:
5. Localhost User ID:
6. Cookie Timeout Minutes: 120
7. Encryption Decryption Key:
8. Encryption Algorithm:
9. Failed Sleep Seconds:
10. Remember Me Enabled:
11. Remember Me Timeout Days: 30
12. Scheme: https
13. Port: 8382
14. Virtual Directory:
Select a Property >\b
(Enter "\b" to gracefully back out of SsoConfig to save the changes.
4. Review / validate the changes made by running SsoConfig again:
./SsoConfig
SSO Configuration:
1. CA Performance Center
Choose an option > 1
SSO Configuration/CA Performance Center:
1. LDAP Authentication
2. SAML2 Authentication
3. Performance Center
4. Single Sign-On
5. Test LDAP
6. Export SAML2 Service Provider Metadata
Choose an option > 4
SSO Configuration/CA Performance Center/Single Sign-On:
Anonymous User Enabled: Disabled
Anonymous User ID: 2
Localhost User Sign-In Page Enabled: Disabled
Localhost User Enabled: Enabled
Localhost User ID: 1
Cookie Timeout Minutes: 120
Encryption Decryption Key: #$utP9%z
Encryption Algorithm: DES
Failed Sleep Seconds: 3
Remember Me Enabled: Enabled
Remember Me Timeout Days: 30
Scheme: https
Port: 8382
Virtual Directory: sso
(Enter "\b" to gracefully back out of SsoConfig