http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnaspnet/html/asp12282000.asp
Session configuration
Below is a sample config.web file used to configure the session state
settings for an ASP.NET application:
<configuration>
<sessionstate
mode="inproc"
cookieless="false"
timeout="20"
sqlconnectionstring="data source=127.0.0.1;user id=sa;password="
server="127.0.0.1"
port="42424"
/>
</configuration>
The settings above are used to configure ASP.NET session state. Let's look
at each in more detail and cover the various uses afterward.
a.. Mode. The mode setting supports three options: inproc, sqlserver, and
stateserver. As stated earlier, ASP.NET supports two modes: in process and
out of process. There are also two options for out-of-process state
management: memory based (stateserver), and SQL Server based (sqlserver).
We'll discuss implementing these options shortly.
b.. Cookieless. The cookieless option for ASP.NET is configured with this
simple Boolean setting.
c.. Timeout. This option controls the length of time a session is
considered valid. The session timeout is a sliding value; on each request
the timeout period is set to the current time plus the timeout value
d.. Sqlconnectionstring. The sqlconnectionstring identifies the database
connection string that names the database used for mode sqlserver.
e.. Server. In the out-of-process mode stateserver, it names the server
that is running the required Windows NT service: ASPState.
f.. Port. The port setting, which accompanies the server setting,
identifies the port number that corresponds to the server setting for mode
stateserver.
