You can configure two global session timeout settings that apply to all users in your organization:
Session inactivity timeout
This setting determines how long a user can be inactive before they are automatically logged out.
Default: 30 minutes
Note: You can make this timeout shorter for stricter security, but you cannot extend it beyond 30 minutes.
Multi-Factor Authentication (MFA) re-authentication period
This setting defines how often users must re-verify their identity using SMS-based MFA.
Default: 7 days (10,080 minutes)
To change these default settings:
Click your user icon at the top right of your Red Canary, then click General Settings.
Enter the desired values and click Save.
