Sessions

There are two types of sessions:

Explicit sessions:   During an explicit session, login or logout requests are initiated to start or to terminate a session. Each login request contains the client’s identity information. Once this identity is accepted and the session established, any following requests carry only the sessionID.
Implicit sessions:   During an implicit session, each request is initiated with the client's identity information. CMI Protocol creates such session on-the-fly, performs operations, and terminates the session once the response is sent.
Session Timeout:   For security reasons, each user session times out, and each sessionID becomes invalid after a configurable time period.

If a session times out, the CMI Protocol updates the audit log entry to status COMPLETED WITH ERRORS, sends an ADVISORY message to the private process, and removes the session content. Any following incoming requests using the timed-out sessionID triggers an error message.

Edit Plug-in Properties - Session Expiry Settings

To define the time interval after which a session expires:

1. Select BusinessConnect > System Settings > Activated Protocol Plug-ins and Properties.
2. Click the CMI link.
3. In the dialog Edit Plug-in Properties: CMI enter the time interval for session expiry in the window cmi.sesson.expiry. Default is 1800 seconds.
4. Click Save to save the session settings.