Here at Venn, we strive to keep work secure without slowing you down. Users told us having to restart Blue Border and their work apps every time they were automatically signed out was slowing them down, so we’re introducing new session management settings to help you balance security and user experience for your organization.
What's Changing
New Session Management Settings
Currently, customers can manage the security of user sessions in Blue Border with the Session expires after idling setting, which requires that users automatically be signed out after idling for a defined period (default = 600 minutes).
Soon, we’ll be introducing the ability to disable the Session expires after idling setting and adding two additional session management settings:
- Lock OS when idle: Lock the device after inactivity. Users unlock to continue working—no restart needed. (Default = 15 minutes)
- Reauthentication when idle: Prompt users to reauthenticate within a defined grace period after inactivity. Apps stay open—no restart needed. This setting is designed to enable an improved idle timeout experience.
Improved Idle Timeout Experience
Currently, all customers have Session expires after idling enabled, which requires that users automatically be signed out after idling for a defined period (default = 600 minutes).
When we roll out our new session management settings, Venn is offering to automatically switch your idle timeout experience from Session expires after idling to the new Reauthentication when idle setting for the same time period. Instead of automatically signing users out, users just need to verify their identity after being idle. This enables an improved idle timeout experience for end users while still enforcing security.
Watch this video to see the difference:
Recommendations
Consider the recommendations below when determining how to leverage Venn’s session management setting:
- Balance security and user experience: We recommend that most customers switch from “Session expires after idling” (currently enabled for all customers) to the new “Reauthentication when idle” option. Instead of automatically being signed out, users will just need to verify their identity after being idle. This enables an improved idle timeout experience for end users while still enforcing security.
- Layer security: Combine "Lock OS when idle" with a shorter timeout (e.g., 30 minutes) and "Reauthentication when idle" with a longer timeout (e.g., 8 hours).
- High-security users: If needed, apply "Session expires after idling" to specific user groups with greater security needs (configurable at the group level).
Availability
We’re currently estimating that these new settings will be available sometime in April. Your Customer Success Manager will reach out with details about updating your account settings.
How to Prepare
Your Customer Success Manager will reach out with details about updating your account settings. In their email, they will share your current “Session expires after idling” setting and offer to switch your account to “Reauthentication when idle” after the same time period.
- If you’re ready to make the change, let your IT and security teams know what’s coming. You can also inform end users in advance. Share this end-user Release Note and/or video with them.
- Should you wish to keep your settings as they are or make further adjustments, please contact your Venn CSM.
Admin FAQ
Why is Venn recommending that we move to the new idle timeout experience?
We’re introducing a new idle timeout experience for end users specifically because users told us having to restart Blue Border and their work apps every time they were automatically signed out was creating friction in their workdays.
Our goal with recommending that our customers change from “Session expires after idling” to our new “Reauthentication when idle” option is to retain the same security benefits of your current settings while improving the user experience. That said, each company knows your security needs and requirements best–we’re keeping the “Session expires after idling” option available should you need to use it!
Do users need to complete MFA in the new idle timeout experience?
Yes. If you require users to complete MFA (e.g., via an authenticator app) when they sign in to their identity provider (which Venn recommends), they will also need to do so when they reauthenticate.
What changes is Venn offering to make automatically?
When we introduce the new session management settings, Venn is offering to automatically switch your current settings from the “Session expires after idling” to the new “Reauthentication when idle” option so that users can benefit from the improved idle timeout experience.
For example, if you currently have “Session expires after idling” set to 600 minutes, we’ll disable that setting and turn on “Reauthentication when idle” for 600 minutes. When a user is idle for 6 hours or longer, they’ll be prompted to reauthenticate when they come back to their computer instead of being signed out automatically.
We will also turn on the "Lock OS when idle" setting for 15 minutes.
When will the change take effect? Will users experience downtime?
Users will not experience any downtime when this feature is rolled out. If you change your settings (automatically by Venn at rollout or manually later), the new session management settings will apply to end users during their next Blue Border session (after the next time they log in).
Are the time periods configurable?
Yes–all of our session management settings have configurable time periods. For each option, you can specify after how many minutes the setting should apply.
Can we adjust our settings in the future?
Yes. Once released, these session management settings will be available for CMs to adjust in the legacy Company Management portal at any time. Should you want or need to go back to your earlier settings or make further adjustments, you can do so any time.
What is the pricing for this new feature?
The new session management settings and idle timeout experience is included in your Blue Border subscription at no additional cost.
When will these new session management settings be available?
We’re currently estimating that these new setting will be available sometime in April. Your Customer Success Manager will reach out in advance with details and an exact date.
Do you have documentation I can pass along to the end users?
Yes. Share this end-user Release Note and/or video with them.