diff --git a/config/application.yml.example b/config/application.yml.example
index 3ed40ee4c52..2ba5ee91997 100644
--- a/config/application.yml.example
+++ b/config/application.yml.example
@@ -79,7 +79,7 @@ development:
   password_strength_enabled: 'true'
   proofing_vendors: 'mock'
   rack_mini_profiler: 'off'
-  reauthn_window: '60'
+  reauthn_window: '120'
   redis_url: 'redis://localhost:6379/0'
   requests_per_ip_limit: '300'
   requests_per_ip_period: '300'
@@ -128,7 +128,7 @@ production:
   password_strength_enabled: 'true'
   proxy_addr: '123.456.789'
   proxy_port: '80'
-  reauthn_window: '60'
+  reauthn_window: '120'
   redis_url: 'redis://localhost:6379/0'
   requests_per_ip_limit: '300'
   requests_per_ip_period: '300'
@@ -172,7 +172,7 @@ test:
   password_pepper: 'f22d4b2cafac9066fe2f4416f5b7a32c6942d82f7e00740c7594a095fa8de8db17c05314be7b18a5d6dd5683e73eadf6cc95aa633e5ad9a701edb95192a6a105'
   password_strength_enabled: 'false'
   proofing_vendors: 'mock'
-  reauthn_window: '60'
+  reauthn_window: '120'
   redis_url: 'redis://localhost:6379/0'
   requests_per_ip_limit: '3'
   requests_per_ip_period: '60'
diff --git a/spec/controllers/reauthn_required_controller_spec.rb b/spec/controllers/reauthn_required_controller_spec.rb
index 868c29c92e0..5017199a9a3 100644
--- a/spec/controllers/reauthn_required_controller_spec.rb
+++ b/spec/controllers/reauthn_required_controller_spec.rb
@@ -27,7 +27,7 @@ def show
 
     context 'authenticated outside the authn window' do
       before do
-        controller.user_session[:authn_at] -= 60
+        controller.user_session[:authn_at] -= Figaro.env.reauthn_window.to_i
       end
 
       it 'redirects to password confirmation' do