Each time a user successfully authenticates in the Management Console, the Auth Service generates a JSON Web Token (JWT) with a 12-hour validity. Since this period clearly exceeds the 15-minute user session duration, you may want to reduce the JWT validity period.

To configure the user JWT expiry

1. Open a session in any Cryptographic Security Platform node.
2. Assign the new expiry period to the AUTH_TOKEN_EXPIRY_PERIOD environment variable, as a value in ISO_8601 format. For example, to assign a validity of one and a half hours.
   sudo kubectl set env -n auth-service statefulset auth-service AUTH_TOKEN_EXPIRY_PERIOD=PT1H30M