To provide secure access to the users' apps portal and to launch Web and desktop applications, you configure access policies with rules that specify criteria that must be met to sign in to their apps portal and to use their resources.

Policy rules map the requesting IP address to network ranges and designate the type of devices that users can use to sign in. The rule defines the authentication methods and the number of hours the authentication is valid.

The Directories Management service includes a default policy that controls access to the service as a whole. This policy is set up to allow access to all network ranges, from all device types, with a session time out at eight hours, and the authentication method is password authentication. You can edit the default policy.


The policies do not control the length of time that an application session lasts. They control the amount of time that users have to launch an application.