Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACS Authentication / DACL Timeout

Hello all,

We have an ASA setup to authenticate users connecting into the DMZ via Radius (ACS), and if authorized, download an ACL from the ACS.

Users are timing out after about 15 minutes and have to re-authenticate.  I'm assuming it's an idle timeout value.

How do I increase that timeout value on the ACS?

 

Thanks!

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

If you are controlling this

If you are controlling this from the ASA you will need to adjust this setting:

vpn-session-timeout 

If you want to control this in ACS you can change/return the following attributes in the "Authorization Profile"

Radius Attribute 50 - CVPN3000/ASA/PIX7.x-Authd-User-Idle-Timeout

  Located under the "Radius Attributes TAB"

Reauthentication Timer: Value 

  Located under the "Common Tasks" tab

This is assuming that you are running ACS 5.x. 

 

Thank you for rating helpful posts! 

Thank you for rating helpful posts!
3 REPLIES
Cisco Employee

If you are controlling this

If you are controlling this from the ASA you will need to adjust this setting:

vpn-session-timeout 

If you want to control this in ACS you can change/return the following attributes in the "Authorization Profile"

Radius Attribute 50 - CVPN3000/ASA/PIX7.x-Authd-User-Idle-Timeout

  Located under the "Radius Attributes TAB"

Reauthentication Timer: Value 

  Located under the "Common Tasks" tab

This is assuming that you are running ACS 5.x. 

 

Thank you for rating helpful posts! 

Thank you for rating helpful posts!
New Member

Thanks, Neno!  That works

Thanks, Neno!  That works great!

Cisco Employee

Glad I could help! :)

Glad I could help! :)

Thank you for rating helpful posts!
83
Views
5
Helpful
3
Replies
CreatePlease to create content