Using SSO involves two different sessions: the SSO session and the Web Verifier session.
To prevent verifier data loss, the SSO session should have a longer timeout than the Web Verifier session.
The SSO and Web Verifier sessions renew with every server request, such as field validation or opening a batch. The sessions do not renew with client-side actions, such as zooming in on an image or typing a value into a form field without validating it.
For details on how to configure the SSO session timeout, refer to your SSO provider documentation.