FortiClient EMS version 7.0.1 introduced the ‘Offline timeout’ field, which allows configuration of the duration before an endpoint is considered offline.

In version 7.2.3, the ‘Tag timeout’ field was added, enabling configuration of the time interval between an endpoint being marked offline and the removal of its associated tag.

If these timeout values are set too short, tags may be frequently removed and re-added. This can occur when a user steps away from the client PC for a few minutes, causing it to enter sleep mode, or when there is a brief network disconnection. Such frequent changes in tag status can place a load on FortiClient, FortiClient EMS, and FortiGate, as these devices synchronize tag information.

Configuration of these settings is possible depending on the environment.

This option can be configured under System Settings -> EMS Settings -> Endpoints Settings by adding ‘Offline timeout’ or ‘Tag timeout’, as described in Configuring EMS settings:

The tag status corresponding to the endpoint status is shown below.

The status is checked on the upper device shown in the image.

1. When the PC is online:

The endpoint is recognized as online, and the tag is active.

2. Immediately after the PC enters sleep mode:

3. After the duration configured in the ‘Offline timeout’ setting has passed:
   

 

4. After the duration configured in the ‘Tag timeout’ setting has passed:

Note:
It is risky to configure these values based solely on theoretical assumptions. Always verify the impact through prior testing to ensure there are no operational issues before applying the settings.

Related document:

Configuring EMS settings | FortiClient 7.2.10