AD user logout after 20 minutes

Question

Good day All, 
 I have setup a lab test environment for the ADSSO. 
 I setup the STAS on both Primary and Secondary AD, Primary is Server2012R2 and Secondary is Server2008R2. 
 The STAS configured on XG is pointed to Server2008R2, it able to pickup the user from the VM i have joined to domain and login from. 
 Currently we have 1 issue which is the AD user account will get logged out automatically after 20-30 minutes, I've tried to search around on how to solve this as the use get logged out automatically will be a very big issue. 
 Perhaps the experts at here can share with me your experience on how tackling this issue. 
 Best regards, 
 Darrow Ooi

dna · Answer

Please check your configuration of the STAS agent software regarding 'Dead entry timeout' and 'Logoff detection'. Furthermore on SFOS you can check if 'Enable User Inactivity' is enabled 
 on the STAS configuration page. 
 Another problem could be the logoff detection itself. E.g. if Polling Method is set to WMI then your workstations must allow WMI connections accordingly.

Thomas Unger · Answer

I've spend so many hours with this problem. But now i think i found the solution. The problem was the "Logoff Detection" (WMI) of the DC. The query was blocked by the client firewall. I created an GPO to activate the "Windows Management Intstrumentation (WMI-In)" firewall rule on all clients. And now everything is working fine. 
 P.S. you can test the WMI rule with following command. wmic /node:x.x.x.x computersystem get username