I’m amending a Session time out in the Web.Config for an ASP.NET application written in C# and currently I have the timeout set to 120 minutes as shown below:
<sessionState mode="InProc" cookieName="Application_SessionId" timeout="120"/>
Is there a limit to this value? So if for example I wished to set it to 24 hours (1440 minutes) would this be applied?
It’s ASP.NET version 4.0 with MVC 2.0
Answers:
Thank you for visiting the Q&A section on Magenaut. Please note that all the answers may not help you solve the issue immediately. So please treat them as advisements. If you found the post helpful (or not), leave a comment & I’ll get back to you as soon as possible.
Method 1
The Timeout property cannot be set to a value greater than 525,600 minutes (1 year). The default value is 20 minutes.
Disadvantage: You will have performance issues if you have large number of users and with increase in session timeout, your inactive sessions will remain in Web server memory which may cause application pool to recycle, which would result in loosing all sessions for all users.
Method 2
by default the value is 20 and the maximum value is 525600 (525600 minutes equivalent to one year). Maintain below code in your Web.config file to maintain maximum session timeout:
<system.web>
<sessionState mode="InProc" timeout="525600"></sessionState>
...
</system.web>
Above one worked for me. Please refer here
Method 3
I am not sure if it makes sense to set the session timeout to 24 hours, but yes it would be applicable to set it to a maximum of 365 days i think.
All methods was sourced from stackoverflow.com or stackexchange.com, is licensed under cc by-sa 2.5, cc by-sa 3.0 and cc by-sa 4.0