Automatic logout is a built-in security feature in itslearning designed to safeguard against unauthorised access in cases of inactivity.
Administrators can adjust the automatic logout duration within site profiles, or they may apply varying inactivity thresholds to groups and individual users through a policy.
For profiles with the hierarchical role of 'Administrator', the default timeout period is set to 30 minutes, while for other profiles, it stands at 80 minutes. Users are provided a warning dialogue 20 minutes before the inactivity threshold is reached and are given the option to remain logged in.
The maximum allowable inactivity duration is eight hours. To uphold security standards, it's advised to keep this duration as brief as feasible, especially in scenarios where itslearning is used on shared devices or where unauthorised individuals might gain access to personal computers. However, in environments where users predominantly operate their own devices or shared computers which require user credentials for access, the logout time can be longer.
Activity is detected by user actions that prompt communication with the server, such as saving changes or navigating to a new page within itslearning.
There are instances where user activity might not be consistently detected, such as when users are engaged in external tools, O365 documents, or when browsing reports or grading tests for extended periods.
It's important to note that if a computer enters sleep mode, communication between the browser and itslearning is halted, which overrides itslearning's automatic logout settings. This behavior can be adjusted via the computer's power and sleep settings. Generally, if a user plans to step away from their computer momentarily, it's advisable to lock the screen instead of putting the computer to sleep to maintain continuous communication.