I have setup a Relying Party, SharePoint site and a Claims application. My application's are talking to each other and the SSO is working with SharePoint. My only issue now is that after about an hour, the user is logged out of the application and sent to the STS login. I can't seem to pinpoint what needs to be changed to extend the users "session." I realize it could possibly be a cookie and not a session. Anybody have any pointers? I spent some time looking around on the web, but haven't been able to pin point a solution to this issue.
I have done all of the following to IIS to extend the timeout but to no avail:
- Change the Application Pools idle time-out.
- Change the ASP Session time-out value by going to ASP – Session Properties under IIS manager.
- Change Cookie Settings time-out value by going to Session State ->Cookie Settings
federatedAuthentication of RP:
<federatedAuthentication>
<wsFederation passiveRedirectEnabled="true" issuer="mystsapplication" realm="RelyingPartURL" requireHttps="false" />
<cookieHandler requireSsl="false" path="/" name="MyCookieHandler" persistentSessionLifetime="0:10:0" />
</federatedAuthentication>
This is also in the web.config of my RP:
web.config of STS application:
authentication mode="Forms">
<forms loginUrl="Login.aspx" protection="All" timeout="600" name=".ASPXAUTH" path="/" requireSSL="false" slidingExpiration="true" defaultUrl="default.aspx" cookieless="UseDeviceProfile" enableCrossAppRedirects="false" />
</authentication>
