App Deployment & Patching Best Practices w/ MVP Johan Arwidmark
Join us at this conference to learn how our experts recommend automating the deployment, patching, and removal of apps.
8 Benefits of a Backup Service for Microsoft 365
In this Veeam webinar, we’ll help you understand eight major benefits of using a backup service for Microsoft 365.
New episode!
Top 20 Features in the New Microsoft Teams and Outlook
In this episode of UnplugIT, we delve into the latest updates and features in the new Microsoft Teams and Outlook clients.

Microsoft’s Outlook on the Web to Drop Support for Activity-Based Authentication Timeout

Key Takeaways:

Microsoft will discontinue support for activity-based authentication timeout in Outlook on the Web in January 2024.

Microsoft advises Outlook users to switch to idle session timeout settings instead.

The idle session timeout feature allows IT admins to set a tenant-wide policy specifying the duration of inactivity after which users must re-enter login credentials.

Microsoft is discontinuing support for activity-based authentication timeout in Outlook on the Web. Starting in January 2024, the company will replace the feature with idle session timeout settings for Microsoft 365 commercial customers.

Microsoft introduced the idle session timeout feature for Microsoft 365 Web apps in June 2022. This feature enables IT admins to create a tenant-wide policy that specifies the duration of inactivity, after which end-users need to re-enter their login credentials to access Microsoft 365 Web apps. The supported apps include Word, Excel, Outlook on the Web, OneDrive for the Web, PowerPoint for the Web, Office.com, SharePoint, and Microsoft 365 admin center.

“Idle Session Timeout is already available and provides the same functionality as Activity-Based Authentication Timeout with the benefit of allowing the configuration not only for Outlook on the web, but for a range of other Microsoft 365 web apps,” the company explained in a message on the Microsoft 365 admin center.

Microsoft's Outlook on the Web to Drop Support for Activity-Based Authentication Timeout

How to enable idle session timeout

Microsoft recommends customers to turn on the idle session timeout setting within their tenants. To implement the policy, navigate to the Org setting section of the Microsoft 365 admin center, click the Security & privacy tab, and select Idle session timeout. Finally, choose the default setting or set a custom value.

Once enabled, users will receive a notification one minute before their idle session timeout duration ends, indicating that their session is about to expire. If the user does not take any action within a specific period, they will be automatically signed out of Microsoft 365 web apps.

Overall, the idle session timeout feature is a great way to provide extra security for remote workers who use shared or unmanaged devices. However, it’s important to note that users must configure their web browsers to accept third-party cookies. Additionally, Microsoft Edge users must set their tracking prevention settings to Balanced (default) to use this feature.

by Rabia Noureen
Nov 30, 2023

Rabia comes from a solid IT background and has been writing professionally about Microsoft products and other technology for four years. Rabia has also written for OnMSFT.com as well as Windows Report. She is always up to date on the latest trends in...

How to Grant Full Mailbox Access to Users in Office 365 and Exchange Server

Aug 4, 2023
Aug 08, 2023
Nested Microsoft 365 Groups: What You Need to Know

Jul 12, 2023
Microsoft and AI: What Is the Copilot Semantic Index and How Does It Work?

Feb 6, 2024
Mar 21, 2024

Take our survey

PETRI NEWSLETTERS

Join Petri Insider

Create a free account today to participate in forum conversations, comment on posts and more.