Cybersecurity Forum

This forum is for all security enthusiasts to discuss Fortinet's latest & evolving technologies and to connect & network with peers in the cybersecurity hemisphere. Share and learn on a broad range of topics like best practices, use cases, integrations and more. For support specific questions/resources, please visit the Support Forum or the Knowledge Base.

New Contributor

Disconnecting user if he have Idle time on forticlient vpn tunnel

I have a question, is it possible if i use (vpn forticlient) with the standard settings (disconnecting the connection after e.g. 8 hours), detect idle time not disconnect on set time??
 i mean if  the user is not using the tunnel and has a laptop running, is it possible to disconnect the remote session if it is inactive? just like sslvpn via www, there you can set that after 30 seconds of inactivity we disconnect the connection.
The question is whether this can be done when using the vpn forticlient? discennect user if he is inactive in forticlient vpn?

thank you in advance
Regards, Przemek

IT Systems Administrator
[FirstName] [JobTitle]
New Contributor II

I think you might be looking for this:

The 8 hours timeout is for authentication. User is disconnected even he is active. Idle timeout is a different timer:

config vpn ssl settings

set idle-timeout 300 (5 minutes)
set auth-timeout 28800 (8 hours)