<div>
Thanks. I had tried that without the cookieless=&quot;UseCookies&quot;<br />
That fixed it.
</div>


Thanks. I had tried that without the cookieless="UseCookies"
That fixed it.

<div>
<div class="content wysiwyg-content">
I'm having trouble with a secure portion of my website logging users out earlier than I would like. I assume the default value is still in place, despite my attemepts to change it. I'm using a pretty basic method of forms authentication to validate users.<br />
<br />
I have the following in my web.config:<br />
<br />

<pre><code id="code-10-28712580-1">&lt;sessionState mode=&quot;InProc&quot; timeout=&quot;60&quot;/&gt;</code></pre>
<br />
and<br />
<br />

<pre><code id="code-10-28712580-2">		&lt;authentication mode=&quot;Forms&quot;&gt;
			&lt;forms name=&quot;.ASPXFORMSDEMO&quot; loginUrl=&quot;http://www.mysite.com/login.aspx&quot; protection=&quot;All&quot; path=&quot;/secure&quot; timeout=&quot;60&quot; defaultUrl=&quot;~/secure/index.aspx&quot; slidingExpiration=&quot;true&quot;/&gt;
		&lt;/authentication&gt;</code></pre>
<br />
What do I need to do to extend the session for the users once they are logged in?
</div>
</div>


I'm having trouble with a secure portion of my website logging users out earlier than I would like. I assume the default value is still in place, despite my attemepts to change it. I'm using a pretty basic method of forms authentication to validate users.

I have the following in my web.config:

(CODE)

and

(CODE)

What do I need to do to extend the session for the users once they are logged in?

Extending the timeout of users logged in via forms authentication in ASP.NET

The successor to Active Server Pages, ASP.NET websites utilize the .NET framework to produce dynamic, data and content-driven web applications and services. ASP.NET code can be written using any .NET supported language. As of 2009, ASP.NET can also apply the Model-View-Controller (MVC) pattern to web applications

ASP.NET

The .NET Framework is not specific to any one programming language; rather, it includes a library of functions that allows developers to rapidly build applications. Several supported languages include C#, VB.NET, C++ or ASP.NET.

.NET Programming

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.