Solved: Glad I could help! :)

JEFF SPRADLING · ‎10-28-2014

Hello all,

We have an ASA setup to authenticate users connecting into the DMZ via Radius (ACS), and if authorized, download an ACL from the ACS.

Users are timing out after about 15 minutes and have to re-authenticate. I'm assuming it's an idle timeout value.

How do I increase that timeout value on the ACS?

Thanks!

nspasov · ‎10-28-2014

If you are controlling this from the ASA you will need to adjust this setting:

vpn-session-timeout

If you want to control this in ACS you can change/return the following attributes in the "Authorization Profile"

Radius Attribute 50 - CVPN3000/ASA/PIX7.x-Authd-User-Idle-Timeout

Located under the "Radius Attributes TAB"

Reauthentication Timer: Value

Located under the "Common Tasks" tab

This is assuming that you are running ACS 5.x.

Thank you for rating helpful posts!

nspasov · ‎10-28-2014