Has anyone greatly extended the session timeout past the 600 minute default? Are there ramifications to extending we might want to consider? I'd prefer to leave it at the default but CEO is asking.
We have our timeout extended to 900 minutes. The only thing that concerned us was someone leaving their external session up and running in a public face. We introduced some idle timeout values via a GPO for that.