Console Login
Docs / Identity / Session Policy

Session Policy

Define session TTL, MFA requirements, and re‑authentication windows.

Identity GovernanceSessionsApprovals

What this covers

TTL controls

Set session duration for governed access.

MFA enforcement

Require MFA for sensitive roles.

Reauth window

Force re‑auth for high‑risk operations.

How to use

1. Define TTL + MFA

Set session TTL and MFA requirements.

2. Register policy

Submit session policy change for approval.

3. Enforce revocation rules

Define revoke triggers and grace period.

4. Review session ledger

Verify active sessions align with policy.

5. Export policy receipt

Produce evidence of policy enforcement.

Console pages

Session policy

Configure TTL and MFA rules.

Identity changes

Review policy change approvals.

Key API endpoints

POST /session/policy — Update session policy
GET /session/policy — Read current policy

Evidence outputs

Identity change receipts for policy updates
Session policy export packets