Thursday, May 19, 2011

Extending the IFD timeout

After deploying IFD, we noted that the default ADFS timeout setting was too short and kept on timing out users.

The IFD Configuration guide has a section describing how to modify the timeout setting. The following is a simple walkthrough:
  • Open up a windows powershell session

  • In ther powershell session type in: 
    • Add-PSSnapin Microsoft.Adfs.PowerShell
    • Get-ADFSRelyingPartyTrust -Name:"Relying_Party"
    • Set-ADFSRelyingPartyTrust -TargetName:"Relying_Party" -TokenLifetime 480

Note that the Relying_Party value should be the Relying Party you see in ADFS. So in this example it would be "CRM External".

The token lifetime is in minutes, so 480 equals 8 hours.

No comments:

Post a Comment