How do I set the login-token cookie expiration for AEM? This token affects the timeout for the session for default AEM authentication (token authentication) and SAML-based authentication.


AEM 6.*


  1. Go to http://aem-host:port/system/console/configMgr/ and log in as admin

  2. Edit the value of the token configuration:

    • Token Expiration=Set this to desired timeout value in milliseconds (for example 3600000 would be 1 hour)
    • Token Length=8
    • Hash Iterations=1000
    • Hash Salt Size=8


    • The default token expiration time for AEM is 43200000 ms (12 hours).

  3. Once you edit the TokenConfiguration from the OSGI console, the file /apps/system/config/ is created in the JCR repository.

  4. Go to http://aem-host:port/crx/de/index.jsp

  5. Browse to and open this file /apps/system/config/

  6. If the field passwordHashAlgorithm exists in the file, then remove that line and save.  For example, now your file might look like this:


    For more documentation on the token configuration, see the api docs.

This work is licensed under a Creative Commons Attribution-Noncommercial-Share Alike 3.0 Unported License  Twitter™ and Facebook posts are not covered under the terms of Creative Commons.

Legal Notices   |   Online Privacy Policy