Thanks! That got me going in the right direction. The Radius:IETF Session-Timout does work. I was sending it twice and the longer duration trumped the shorter duration hence why I was not seeing a re-auth.
FYI - I dont think newer IAP code shows the session time-out any longer. I am running 6.5.4.6. It is hard to read the blob of data but I dont think I see the timeout. Anyway, thanks for the help guys!