# Session Timeout
Session timeout in DuploCloud determines how long a user session remains active before requiring re-authentication. Administrators can configure these settings to enhance security by ensuring users are logged out after a defined period of inactivity.
## Configuring Authorization Token Session Duration
Set how long a user session lasts in the DuploCloud Portal before the user must reauthenticate.
1. In the DuploCloud Portal, navigate to **Administrator** -> **System Settings**.
2. Select the **System Config** tab.
3. Click **Add**. The **Add Config** pane displays.
Add Config pane
4. In the **Config Type** list box, select **AppConfig**.
5. In the **Key** list box, select **Authorization token session duration**.
6. In the **Value** field, enter the session timeout duration in minutes.
7. Click **Submit**. Users will be logged out and must reauthenticate after the set amount of time.
## Maximum Kubernetes Session Duration
Set the maximum duration of a Kubernetes session (kubectl shell or K8s dashboard) before reauthentication is required.
1. In the DuploCloud Portal, navigate to **Administrator** -> **System Settings**.
2. Select the **System Config** tab.
3. Click **Add**. The **Add Config** pane displays.
Add ConAdd Config panefig pane
4. In the **Config Type** list box, select **AppConfig**.
5. In the **Key** list box, select **Maximum K8s Session Duration**.
6. In the **Value** field, enter the session timeout duration in minutes.
7. Click **Submit**. Users will be logged out and must reauthenticate after the set amount of time.
.png?alt=media&token=f74a3fe5-45bd-41d1-9663-b402488f3eb9)
.png?alt=media&token=8160b59e-ec29-4036-8776-a45d44bfdfc6)