Token Timeout

When an externally authenticated user logs in to Analytic Services, a token is generated to contain the login credentials. The token enables single sign-on; in other words, the logged-on user may use other Hyperion applications without logging on again, as long as those applications are launched from Analytic Services and are configured identically for external authentication.

Analytic Services clients, such as the Spreadsheet Add-in, do not launch other Hyperion applications; however, other Hyperion applications may launch Analytic Services, and in that case, the XML configurations of Analytic Services and the other Hyperion applications must be identical. Note: custom-developed Analytic Services applications might be set up to launch other Hyperion applications, and in those cases the token (which enables single sign-on between them) applies as well.

You can configure the token to expire after a specified number of minutes.

To set the token timeout, edit the following section of the XML configuration file, replacing the sample value of 60 with the desired number of minutes that should pass before a user is required to re-authenticate:

<token> 
 <timeout>60</timeout> 
</token>

The default length of a token is 480 minutes (8 hours). In other words, if the <token> </token> element and all its contents are removed from the configuration file, the security platform will assign a default token timout of 8 hours.

©2004 Hyperion Solutions Corporation. All Rights Reserved.
http://www.hyperion.com