Jun 24, 2020 02:14 PM|mgebhard|LINK
Once the user authenticates with the authentication server, the browser is redirected back to your site. Your configuration sets the authentication cookie timeout and from that point on your site, not Azure AD, validates the authentication cookie.
Your login logic determines if the cookie persists or expires when the browser closes. You can can configure a sliding expiration and the ExpiretimeSpan setting in your OWIN startup configuration.
General configuration with example code.
Cookie options which includes the ExpiretimeSpan setting.