are there any settings on the client that would cause a session to timeout imediately? I have an ASP app that works fine for 99.9% of the users but I get complaints from .1% saying that just after having logged into the system they click a link on the page and they are redirected to the login with a message stating that their session has timed out. This message comes from me and its checking their userId session variable which is required to run the app, and like I said its working for 99.9% of my users.

I'm really hoping that this is a client setting that I'm not aware of, do cookies have to be enabled in order to maintain a session? This doesn't make sense to me but hey that wouldn't be the first time that's ever happened.

Thanks

Cookies do have to be enabled to maintain a session. This is how the web server tracks the user -- how it knows one session from another. The cookie is called ASPSESSIONIDxxxxx

If cookies aren't enabled, they'll always get the expired session mesage. Make sure to tell your users that they need cookies enabled for full functionality on your site