Hi
I have setup the Token Lifetime as 10, Web SSO Lifetime as 8 (on ADFS server) and LogonTokenCacheExpirationWindow as 2 minutes (on SharePoint server). As per my understanding after 8 minutes of idle session in SharePoint web application, it should redirect to ADFS for authentication since Relying party token (Token Lifetime - LogonTokenCacheExpirationWindow) is expired. Now as I have also setup Web SSO lifetime as 8. It should ask for credentials from user before creating a new session for him(since ADFS-Token is expired).
But in my case it redirects to the ADFS server but again re-creates the session for the user and directs him to web application without asking for credentials again.
I want to force the user to enter the credentials again.
I have read somewhere about setting freshness="0". I have no idea about this also.
Please help.