Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Cisco NAC timeout/refresh

We have a Cisco NAC solution for our wireless solution. For mobile devices, although directed through the NAC, they do not have an agent and are not checked at all. This is fine and they can connect to the network ok.

After a while, the sessions timeout, and they have to open the web browser to refresh the session. This doesn't happen if the user is using the web browser often. This part is troublesome.

We have no session timeouts configured on the NAC, but the controllers do have an inactive user session timeout of 1 hour.

We know it is NAC related as any SSID that does not go through the NAC does not experience this issue and we have disabled NAC as a test, and again this resolved the issue. NAC is currently running 4.8.0.

My question is does the NAC only register ports 80/443 as 'active user' traffic? If not, why is this happening and why do they have to open a browser to get things going again?