Hi All,
Is there a way to enforce a timeout on the 2fa authentication period?
We are required to enforce refreshing of 2fa authentication every 24 hours to maintain certification while working remotely. I have not found a way to set this in our Fortigate 200D. I am fine with setting a timeout on the VPN connection itself, thereby forcing a refresh of 2fa.
Also, I would prefer a session timeout rather than an inactivity timeout, if possible.
Thanks!
Tim
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
The first thing I found in my Internet search was my own post about idle timeout on this forum two years ago.
https://forum.fortinet.com/tm.aspx?m=159981
I don't see other timeout setting in IPsec phase1 config. Probably auth server side including 2Factor auth doesn't have a mechanism to kill the VPN once it's successfully authorized.
If it were SSL VPN, you could set the session timemout to drop the connection as you wanted.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1547 | |
1031 | |
749 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.