Q: How do I change the user inactivity time?

A: If the website uses forms authentication the users will be logged out automatically by .Net after a certain time of inactivity. This time period can be changed in web.config by setting the value of the "timeout" attribute in the forms section, see below.

<forms name="name"
       loginUrl="url"
       protection="All|None|Encryption|Validation"
       timeout="30"
       path="/" >
       <credentials passwordFormat="format" />
</forms>

Description of the timeout attribute, from the VS.NET help:

Specifies the amount of time, in integer minutes, after which the cookie expires. [The default value is 120 as of EPiServer 4.20]. The timeout attribute is a sliding value, expiring at the specified number of minutes after the time the last request was received. To prevent compromised performance, and to avoid multiple browser warnings for users that have cookie warnings turned on, the cookie is updated when more than half the specified time has elapsed. This might result in a loss of precision. Persistent cookies do not time out.

Note! The web.config setting EPnUserCacheTimeout does not affect the client timeout, it only specifies how long EPiServer should cache the user credentials on the server.