To provide secure access to the users' apps portal and to launch Web and desktop applications, you configure access policies. Access policies include rules that specify criteria that must be met to sign in to their apps portal and to use their resources.
Policy rules map the requesting IP address to network ranges and designate the type of devices that users can use to sign in. The rule defines the authentication methods and the number of hours the authentication is valid. You can select one or more groups to associate with the access rule.
The VMware Identity Manager service includes a default policy that controls access to the service as a whole. This policy is set up to allow access to all network ranges, from all device types, for all users. The session timeout is eight hours and the authentication method is password authentication. You can edit the default policy.
The policies do not control the length of time that an application session lasts. They control the amount of time that users have to launch an application.