Set OWA user session limit.
To enhance security, it is suggested to force logoff OWA users session after certain time limit.
Smith Bryan Espina commented
Hi Team, Please fix the issue with the parameter "ActivityBasedAuthenticationTimeoutInterval"
I tried setting this to 00:05:00 (5 minutes) but after 24 hours or several days, I am still logged in to OWA using any browsers. I already tried using different machines (Personal machines and Company computers). having the same issues even deleting the browsers cache and password. Please fix this asap as this is a security concerns.
Scott Rosenblatt commented
This is ridiculous. We're using Okta for MFA and we can't force the users web session to expire?? Where is the security??? We shouldn't be ocked into MS MFA to have security when we're federated w Okta.