To configure secure
logoff
-
In the Forefront TMG Management console, in the tree, click the Firewall Policy node.
-
In the details pane, click the applicable Web publishing rule that uses HTML forms-based authentication.
-
On the Tasks tab, click Edit Selected Rule.
-
On the Application Settings tab, in the Published server logoff URL field, type the string that is used in the logoff link on the published Web page to indicate a logoff request, for example, ?Cmd=logoff, or logoff=1.
-
Click OK.
-
On the Listener tab, click Properties.
-
On the Forms tab, click Advanced.
-
Under Cookie Settings, you can provide a name for the cookie that Forefront TMG provides to the client after forms-based authentication succeeds. From the drop-down list you can select whether the cookies are persistent (continue to exist on the client after the session ends) on all computers, only on private computers, or never.
-
For Ignore browser IP address for cookie validation, set whether you want to allow clients to use the same cookie from different IP addresses. For example, requests from a single client may appear to come from different IP addresses, such as when there is a load balancer between the client and Forefront TMG.
-
Under Client Security Settings, select:
- Treat as maximum idle time, to set a
time-out period based on the amount of time that the client is
idle.
- Treat as maximum session duration, to
set a time-out period based on the session length. Then provide
time-out periods for public and private computers, which will be
used to establish the maximum idle time or maximum session
length.
- Apply session timeout to non-browser
clients, to apply the session time-out period to clients that
are not browser-based (such as Outlook RPC/HTTP and
ActiveSync).
- Treat as maximum idle time, to set a
time-out period based on the amount of time that the client is
idle.
-
Click OK, click OK again, and then click OK again.
-
In the details pane, click the Apply button to save and update the configuration, and then click OK.
![]() |
---|
|
Related Topics
Copyright © 2009 by Microsoft Corporation. All rights reserved.