Thanks Marvin.
Yes, we're using SMP. So users have to authenticate every time the SMP session expires? And this is not limited to SAML?
We're looking to improve on this in terms of user experience. We don't want users to authenticate often. Is it advisable to adjust SMP session timeout? Currently, it's set at the default 20 mins (ADFS SAML token timeout is 60 mins).
We really thought authentication only happens during user onboarding/registration. I guess we were wrong about that.
Regards