Categories
- All Categories
- Oracle Analytics and AI Learning Hub
- 39 Oracle Analytics and AI Sharing Center
- 20 Oracle Analytics and AI Lounge
- 275 Oracle Analytics and AI News
- 50 Oracle Analytics and AI Videos
- 16.2K Oracle Analytics and AI Forums
- 6.4K Oracle Analytics and AI Idea Labs
- Oracle Analytics and AI User Groups
- 102 Oracle Analytics and AI Trainings
- 17 Oracle Analytics and AI Challenge
- Find Partners
- For Partners
Configuration to disable concurrent sessions for a single user
Proposing a new configuration wherein there is an option to disable concurrent sessions for each user. Example is when a user is logged in, the same user cannot login in another tab or in another browser.
Purpose for this is if there are concurrent sessions from a user, it could make it harder to detect account compromise, as an illegitimate user could use a valid credential to authenticate and access the system at the same time as the legitimate user, raising the likelihood of continuous access to the application and its data.
Comments
-
Agreeing on the security point, it’s valuable for sensitive data use cases. At the same time, many users access OAC from different devices, so maybe instead of disabling concurrent sessions entirely, we can have a role-based option or dashboard setting to prevent concurrent view for each user or role.
0
