Skip to main content

Session Management

Session Management allows administrators to monitor and control user sessions across the platform, ensuring security and compliance.

Overview

Session management provides:

  • Visibility into active user sessions (who, where, when)
  • Termination of individual or bulk sessions
  • Policy configuration for session duration, idle timeout, and concurrency
  • Re-authentication requirements for sensitive actions

What You Can See

The Sessions page shows the following for each active session:

FieldDescription
User name and emailWho is logged in
Session start timeWhen the session began
Last activityMost recent action
IP addressSource IP
User agent / deviceBrowser and OS information
Session statusActive or idle

Feature Availability

FeatureGrowthEnterprise
View SessionsYesYes
Terminate SessionsYesYes
Session PoliciesYesYes
Advanced Policies--Yes

Managing Sessions

Access Session Management through the Security Center:

  1. Navigate to Security in the top bar
  2. Click on the Sessions tab
  3. View all active sessions with user, IP, device, and activity details

Terminating Sessions

  • Single session: Click the terminate button next to any session
  • All user sessions: Select a user and terminate all their sessions at once
  • Bulk termination: Filter by inactivity period (e.g., inactive for 24 hours) and terminate matching sessions

Session Policies

Configure session behavior in Settings > Security > Sessions:

SettingDescriptionRecommended
Max Session DurationMaximum time before forced logout8 hours (480 minutes)
Idle TimeoutInactivity period before automatic logout30 minutes
Max Concurrent SessionsSessions allowed per user5
Re-auth for Sensitive ActionsRequire password re-entry for settings changes, user deletion, etc.Enabled

Next: Learn about Incidents for security incident management.