Access profile - force user to reauthenticate
Hello,
I would like to use my Access profiles to force users to periodically re-authenticate. I'm primarily using Kerberos and NTLM authentication (depending on the application). As an example, one of my access profiles is to authenticate to a test instance of SharePoint 2013. I have the Inactivity Timeout period set to 900 seconds; it's using a Kerberos SSO configuration; the access profile, to allow a client, does a client cert inspection, a variable assign, and SSO Credential Mapping. All of that works as expected. If a user is constantly working on this application for 2 hours without hitting the inactivity timeout period, they would never be asked to re-authenticate. I'd like them to have to re-authenticate periodically, let's say every hour, even if they don't hit the inactivity timeout threshold.
Does anyone have any ideas how this could be accomplished? Thanks in advance.