User Identity Policy allows active sessions

Forum|Forum|10 years ago
March 30, 2016
1 reply
3843 views

Hello,

We have fortigate 80C (FortiOS V5.0+) using User identity based policy and Created a Schedule timeout policy for accessing facebook and youtube in lunch time.The problem is after the scheduled timeout the active session will still be allowed facebook and youtube (not blocking) but new sessions is blocking.

Any idea , how to fix this?

Thanks,

Asok

Best answer by Carl_Wallmark

Hi,

Can´t remember if this was introduced in 5.0 or 5.2 but you need "hard-timeout"

# config user setting

# set auth-timeout-type

idle-timeout Idle timeout. hard-timeout Hard timeout. new-session New session timeout.

Carl_WallmarkAnswer

New Member

Hi,

Can´t remember if this was introduced in 5.0 or 5.2 but you need "hard-timeout"

# config user setting

# set auth-timeout-type

idle-timeout Idle timeout. hard-timeout Hard timeout. new-session New session timeout.

AsokAuthor

New Member

Hi,

Thank you very much,this worked but the User entry will be removed after the configured auth- timeout value.

So the user will be prompted to authenticate every 5 mints (if the auth timeout is 5 min) for further requests. Right?

Thanks ,

Asok

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded