NetDocuments Login Timeout

Frequently Asked Question: Can you extend the timeout of the NetDocuments Web Interface?

The NetDocuments web user interface has a default login timeout of 90 minutes. Meaning if you are using the NetDocuments web user interface and are inactive in the NetDocuments browser for 90 minutes or more, you will be automatically logged out. At this point, you would have to reauthenticate with NetDocuments. Our Element team is asked frequently how to extend this timeout. This setting is not adjusted in the NetDocuments Admin Console. We have provided the instructions needed to make the timeout adjustment to your interface.   

A side note of ndOffice: Your authentication in ndOffice is not tied to the timeout which is present for the NetDocuments web user interface. The ndOffice authentication makes use of an OAuth token which remains valid as long as the user routinely uses ndOffice on their computer.

How to accomplish the adjustment?

If your organization is using an identity provider with NetDocuments such as Azure, Duo, Okta, AuthPoint, or another SAML 2.0 compliant identity provider, a custom SAML claim may be sent to adjust the login timeout for the NetDocuments web interface. The claim which needs to be sent with login is as follows:

The exact method of the setup of this custom claim with your identity provider varies depending upon the identity provider. Directions for common identity providers that we see are below.

Azure AD

1. Open the NetDocuments Enterprise Application in Azure.

2. Open the Attributes & Claims section.

3. Click on the pencil to edit the User Attributes & Claims section.

4.  Add a Claim with the following values:
Name: sessiontimeout
Namespace:  http://netdocuments.com/2014/identity/claims/sessiontimeout
Source: Attribute
Source attribute:  Populate the number of minutes you wish to set the timeout to be.

5. Click the Save Button at the top left of the claim window.

Duo

1.  Navigate to the NetDocuments SSO application you have set up in Duo.

2. In the Create Attributes section, populate the following:
Name: http://netdocuments.com/2014/identity/claims/sessiontimeout
Value:  Populate the number of minutes you wish to set the timeout to be.

3.  Click the save button at the bottom of the page.

Okta

1.  In order to use custom claims with Okta, you must set up a Custom Application rather than the prebuilt NetDocuments application in Okta.   Overall details on this configuration can be found here:  https://support.netdocuments.com/s/article/360038274132

2. In order to extend the login timeout, in the Attribute Statements section, include the following:
Name: http://netdocuments.com/2014/identity/claims/sessiontimeout
Name format: Basic
Value:  Populate the number of minutes you wish to set the timeout to be.

3.  Click Finish when you are done.

AuthPoint

1.  Navigate to the AuthPoint resource that you have set up for NetDocuments.

2.  In the Custom Attributes section, click on + Add Attribute

3.  Populate the following values:
Attribute Name: http://netdocuments.com/2014/identity/claims/sessiontimeout
Get Value From: Fixed value
Fixed Value:  Populate the number of minutes you wish to set the timeout to be.

4.  Click SAVE.

5.  Scroll to the bottom of the page and click SAVE.

If you run into questions about configuring this for your organization, the Element team would be happy to assist you with your needs.

[email protected] · (888) 312-7117