Configuring Authentication Profiles and Mobile Sessions

To control which authentication methods are available to users, you configure authentication profiles in the Delinea Platform. When setting up a profile, select the Mobile authenticator option to include the Delinea Mobile app as an MFA mechanism.See the screenshot below:

onboarding

The authentication profile then displays the Mobile authenticator along with any other selected authentication methods, allowing you to tailor login security to your organization’s needs.

auth profile

For more information on authentication profiles, please refer to Identity MFA Profiles.

You can also use the Delinea Authenticator App as part of your authentication profile. For more information, see Delinea Authenticator App.

Setting the Mobile App Session Policy

You can set the desired session length for Delinea Mobile (in days) inside the Delinea Platform. When the session reaches its set length, users must re-authenticate with the platform. The default session length lasts 14 days, but you can configure session lengths within the following ranges:

  • Minimum - 1 day
  • Maximum - 90 days

For more information, see Creating Authentication Profiles.

Configuring Authentication Profiles in Secret Server

Currently, Secret Server does not offer authentication profiles specific to Delinea Mobile. Therefore, you must adjust the Web Service Settings inside Secret Server. Delinea Mobile uses these settings to determine the token lifespan and the number of refresh tokens, which control how long Delinea Mobile can remain logged into Secret Server.

For more information on how to configure these settings, please refer to Enabling Refresh Tokens for Web Services.