After viewing your information, it looks like you try to disconnect all users from the network at 12:40pm. I assume that is a test only, because I can't really understand how that time will contribute to users allowed only from 9-5.
Then it looks that you created a time-source that calculates the time till 12:40pm in seconds and returns that as the Session-Timeout to your controller.
In the access tracker, I see an authentication happening just before 12:40pm (12:39:36 ART), where the timeout is sent (Session-Timeout Normal). It is not really clear what does not work as expected.
Can you show the expanded Output tab from the Access-Tracker, where the authentication happens? I could not see what is the outcome of your timesource calculation, which might have an error because epoch is in UTC timezone and you probably need a local timezone [I could not verify the query for your timesource]. Note that the Session-Timeout should be a value in seconds after which the controller will re-authenticate.
Also, in your example, if the client is re-authenticating just after 12:40pm, it will be just accepted for another 24h as it is between 9-5 which is in your policy.
First step should be to validate that the correct Session Timeout is returned to the controller.
Also, it seems to me that some interactive troubleshooting will result in faster resolution, rather than sending screenshots in this forum. You can work with your Aruba partner or Aruba TAC to get such assistance.