Define the Validity Period of 2FA Logon Tokens

When a user logs on to Geo SCADA Expert from a client (such as ViewX) using two-factor authentication (2FA), they are issued with a token that represents their access to that Geo SCADA Expert system. The client uses this token to authenticate any additional links that it requires to the Geo SCADA Expert server while the user remains logged on. This avoids requiring the user to perform a fresh two-factor authentication process each time the client requires an additional link to the server during the current logon session. In response to the user's activity, the client uses the links for purposes such as displaying data in Queries Lists or accessing displays, such as Mimics. The token has a defined lifetime and must be renewed periodically before it expires. The client performs this token renewal automatically while the user remains logged on.

You use the Validity period setting in the Security section of the Server Configuration tool to define the period for which 2FA tokens that are issued to logged on users remain valid. Clients, such as ViewX, use the expiry time to determine when the token should be renewed.

The Security section is located in the System Configuration branch of the Server Configuration Tool.

To define the validity period of the logon tokens that are used for two-factor authentication (2FA):

1. Access the Geo SCADA Expert Server Configuration Tool.
2. Expand the system node that you require.
3. Expand the System Configuration branch.
4. Select the Security entry.
   Geo SCADA Expert displays the security settings.
5. Define the setting in the Logon Tokens (2FA) section:

   

   • Validity period—Enter in minutes the time period for which 2FA tokens issued to logged on users remain valid. The default validity period is 60 minutes. The minimum time that you can specify is 10 minutes. While the user remains logged on, the client periodically renews the token before the time expires, to help provide a seamless logon experience for the user.