Session Management
SipherMail lets you view and manage all active sessions — every browser, mobile app, and API client currently logged into your account.
View active sessions
Go to Settings → Security → Active Sessions. Each session shows:
- Device type and browser/app name
- Approximate location (city, country) based on IP at login time
- Last activity time
- Whether it's the current session
Revoke a session
Click Revoke next to any session to immediately invalidate it. The device will be logged out on its next request. Use this if you lose a device or see a session you don't recognise.
Sign out all other sessions
Click Sign out all other sessions to revoke every session except the current one. Useful after a suspected compromise or when selling a device.
Session lifetime
Web sessions expire after 30 days of inactivity. Mobile app sessions do not expire as long as the app is in use, but can be revoked manually.