it is per wlan config regardless auth method... future release will have further option to keep user stay on a web auth wlan... due to sometimes current session timeout is not always working as expected.

Sent from Cisco Technical Support iPad App

It should work. By default, the session timeout parameter is configured for 1800 seconds       before a reauthentication occurs.

Change this value to desire seconds in order to make the client       reauthenticate after specified minutes.

In order to access the session timeout parameter, click the       WLANs menu in the GUI. It displays the list of WLANs       configured in the WLC. Click the WLAN to which the client belongs. Go to       the Advanced tab and you find Enable Session       Timeout parameter. Change the default value to 180, and click       Apply for the changes to take effect.

When sent in an Access-Accept, along with a Termination-Action value of       RADIUS-Request, the Session-Timeout attribute specifies the maximum number of       seconds of service provided before re-authentication. In this case, the       Session-Timeout attribute is used to load the ReAuthPeriod constant within the       Reauthentication Timer state machine of 802.1X.