Forum Discussion

RippieUK's avatar
RippieUK
Brass Contributor
Dec 06, 2021

Conditional Access: Can someone please explain sign-in frequency and persistent browser session

Good morning, afternoon and evening everyone.   So can someone please explain the difference between Sign-in Frequency and persistent browser session.   Do I need to use both? I can read that sig...
Access Management
Azure Active Directory (AAD)
VasilMichev's avatar
VasilMichev
MVP
Persistent session applies to "all apps" because the browser "shares" the cookie with all resources it applies to, you don't get a separate cookie per app/resource. It's not directly related to the sign-in frequency in the sense that it's a simple "on/off" switch, either there is a cookie after you reopen the browser or not. But it does have a validity too, so you cannot use it indefinitely, so in that sense it is also tied to the SIF window.
For shared devices, you'd probably want a separate policy.
Miike445's avatar
Miike445
Copper Contributor
Sep 05, 2022

Has anyone had both working together?

 

Running some tests this afternoon - Persistent Browser Session for all apps, with a 2 hour SIF. A separate policy for PowerApps with a 1 hour SIF. Once the one hour SIF is hit, all applications not just Powerapps require re-authentication in the browser. 

 

Great if they would work independently but not sure if this is currently a thing!

  • AusSupport180's avatar
    AusSupport180
    Brass Contributor
    Mar 18, 2024
    I'm also looking the same solution

Resources