10-28-2014 01:50 PM - edited 03-10-2019 10:09 PM
Hello all,
We have an ASA setup to authenticate users connecting into the DMZ via Radius (ACS), and if authorized, download an ACL from the ACS.
Users are timing out after about 15 minutes and have to re-authenticate. I'm assuming it's an idle timeout value.
How do I increase that timeout value on the ACS?
Thanks!
Solved! Go to Solution.
10-28-2014 09:19 PM
If you are controlling this from the ASA you will need to adjust this setting:
vpn-session-timeout
If you want to control this in ACS you can change/return the following attributes in the "Authorization Profile"
Radius Attribute 50 - CVPN3000/ASA/PIX7.x-Authd-User-Idle-Timeout
Located under the "Radius Attributes TAB"
Reauthentication Timer: Value
Located under the "Common Tasks" tab
This is assuming that you are running ACS 5.x.
Thank you for rating helpful posts!
10-28-2014 09:19 PM
If you are controlling this from the ASA you will need to adjust this setting:
vpn-session-timeout
If you want to control this in ACS you can change/return the following attributes in the "Authorization Profile"
Radius Attribute 50 - CVPN3000/ASA/PIX7.x-Authd-User-Idle-Timeout
Located under the "Radius Attributes TAB"
Reauthentication Timer: Value
Located under the "Common Tasks" tab
This is assuming that you are running ACS 5.x.
Thank you for rating helpful posts!
10-29-2014 06:21 AM
Thanks, Neno! That works great!
10-29-2014 10:49 AM
Glad I could help! :)
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide