My system is managed using NAM. We have protected all the URLs in
access gateway with a custom authentication contract.
Now what we want to do is to set two types of timeout -
1. Idle timeout - the user logs in, if (s)he doesn't do any activity
for n minutes then the user should be logged-out.
2. Session timeout - the user logs in, is doing some activity, still
after n minutes (s)he should be logged-out.

As per my understanding, first kind of timeout is satisfied by setting
Authentication Timeout while Configuring Authentication Contracts. Is
this correct?

Also how to meet the second timeout requirement?


nishita_jain's Profile: http://forums.novell.com/member.php?userid=124011
View this thread: http://forums.novell.com/showthread.php?t=458706