Control how long users can stay logged into Benchling before re-authenticating
There are often security or compliance reasons to enforce users be active when viewing data in Benchling, or re-authenticate regularly. You can control timeout length on your tenant with:
Idle timeouts control how long a user can be idle before they’re automatically logged out of Benchling. They help secure your work environment by minimizing opportunities for data to be exposed without supervision and are particularly useful where shared workstations are common.
Session length timeouts control the maximum time a user can be logged into Benchling before they’re forced to re-authenticate. They ensure anyone using Benchling has current credentials, especially when using your own identity provider to authenticate users.
It’s common to use both settings.
Timeouts must be configured by Benchling. To configure timeouts, contact your Benchling representative.
We recommend starting with the following settings:
Idle timeout: 60 minutes
Session length timeout: 168 hours (a week)
Session requirements will vary based on your organization’s needs, so you may need to adjust these limits later.
You can’t set timeouts for periods of time below these minimums:
Idle timeout: 5 minutes, set in minute increments
Session length timeout: 12 hours, set in hour increments
Note: When determining timeout limits, we recommend setting the session length timeout longer than idle timeout. Not doing so is equivalent to having idle timeout disabled.
Considerations for authenticating using your own identity provider
If you are using your own identity provider to authenticate, like SAML authentication, ensure the identity provider app session length is configured at or below the Benchling idle timeout. If not, the existing browser session may allow the user to log in without re-entering their credentials.
Below are instructions to configure session length for some of our most common identity providers:
Timeout user experience
The table below describes the user experience for each timeout limit while the user is within and approaching the end of a session.
View timeout limits
You can view both timeout limits in the Tenant Admin Console:
Click your initials in the bottom-left corner, then select Tenant Admin Console.
Click Settings, then click Configurations.
Note: To configure timeouts, contact your Benchling representative.