KB: How to Control SSO Login Expiry for Altium Designer
Altium Designer
Solution Details
Understanding SSO session behavior
After SSO is configured for Altium Designer, there may be a need to understand how long a login session remains active, when re-authentication occurs, or whether active sessions can be terminated from within Altium. These questions may arise due to internal security, compliance, or access-control requirements.
Session lifetime controlled outside Altium
SSO session expiry is determined entirely by the Identity Provider configuration. Altium Designer does not provide any option to configure, shorten, extend, or revoke SSO session duration. Each Identity Provider manages session lifetime using its own authentication tokens or session cookies, and the behavior depends on the provider’s configuration and security policies.
Where changes can be made
- SSO session expiry is configured in the Identity Provider.
- Authentication token lifetime or session cookie duration is adjusted at the IdP level.
- Security policies are applied according to organizational requirements.
Steps to adjust SSO session duration
- Identify the Identity Provider used for SSO (for example, Okta or Microsoft Azure).
- Sign in to the administrative console of the Identity Provider.
- Locate the SSO session, authentication token, or session cookie settings.
- Modify the session or token expiration values as required.
- Save the configuration and validate behavior during the next sign-in.
Additional Notes
Session expiration behavior may differ between desktop sign-in through Altium Designer and browser-based authentication flows, depending on how the Identity Provider handles application tokens versus browser sessions. In all cases, session duration is governed by the Identity Provider configuration. This behavior also applies to the Altium unified login experience.