Skip to main content

Active sessions: restrict concurrent users for same user and specify session timeout

 https://docs.servicenow.com/bundle/paris-platform-administration/page/integrate/authentication/task/limit-concurrent-sessions-plugin.html


https://docs.servicenow.com/bundle/paris-platform-administration/page/integrate/authentication/concept/limit-concurrent-sessions.html


https://docs.servicenow.com/bundle/paris-platform-administration/page/administer/security/reference/session-activity-timeout.html


after you have installed the plugin Limit Concurrent Sessions plugin (com.glide.limit.concurrent.sessions)  

these properties need to be set to true: glide.authenticate.limit.concurrent.interactive.sessions
and to the glide.ui.session_timeout value desired (default is 60 mins)

you may wish to run the following fix script and code this business rule also to default the setting:

BUSINESS RULE: default limit_concurrent_sessions to true when creating a new user (exclude integration users if you wish) - before insert and set condition to 'u_service_account=false' or similar

(function executeRule(current, previous /*null when async*/) { //-- see STRY0010717 current.limit_concurrent_sessions=true; })(current, previous);




FIX SCRIPT: bulk update existing users

var grUsers = new GlideRecord('sys_user'); grUsers.addQuery('u_service_account', 'false'); grUsers.addQuery('limit_concurrent_sessions', 'false'); //grUsers.query(); //gs.print(grUsers.getRowCount()); grUsers.setValue('limit_concurrent_sessions', 'true'); grUsers.updateMultiple();


Comments

Popular posts from this blog

Get URL Parameter - server side script (portal or classic UI)

Classic UI : var sURL_editparam = gs . action . getGlideURI (). getMap (). get ( ' sysparm_aparameter ' ); if ( sURL_editparam == 'true' ) { gs . addInfoMessage ( 'parameter passed ); } Portal : var sURL_editparam = $sp . getParameter ( " sysparm_aparameter " ); if ( sURL_editparam == 'true' ) { gs . addInfoMessage ( 'parameter passed ); }

ServiceNow - script include: build up the results as a JSON object (array) - example 2

function call var sCurrentGroupMembers = new <script_include> (). getGroupMembers ( group_sysid ); gs . print ( 'sCurrentGroupMembers:' + sCurrentGroupMembers ); var oGroupMembers = JSON . parse ( sCurrentGroupMembers ); gs . print ( JSON . stringify ( oGroupMembers . users )); oNewGroupMember = JSON . parse ( group_members ); var oGroupConfig = getGroupDeltas ( oGroupMembers . users , oNewGroupMember ); gs . print ( JSON . stringify ( oGroupConfig . remove )); gs . print ( JSON . stringify ( oGroupConfig . add )) output : *** Script: sCurrentGroupMembers: {"manager":"3b2649efdb0f8c10cc0652f3f39xxxxx", "email":"", "type":"33a2226edb99c340edfc7cbdae96xxxx", "description":"Created for xyz", "users":[{"user":"3b2649efdb0f8c10cc0652f3f396xxxx"},{"user":"856a8f71db3d73041b4ffc45ae96196a"},{"user":"3752771