topic Re: Session timeout when using Cisco Secure Access in Cloud Security

Session timeout when using Cisco Secure Access

msyk.oym — Wed, 15 Oct 2025 23:22:47 GMT

Is it possible to time out a user's session if they have not performed any operations for a certain period of time?

We use Cisco Secure Access in the following environment:

- The Internet is accessed from the branch office where the VPN router is installed via Cisco Secure Access.
- SSO authentication is enabled in the Internet access policy.
- In Configuration Management's SSO authentication, Re-authenticate Web Proxy Users is set to Daily.

Is it possible to time out a session for users who have not performed any operations for a certain period of time?
For example, time out the session if there has been no operation for 10 minutes.
Please let me know if there are any other settings that are necessary in Cisco Secure Access.

Re: Session timeout when using Cisco Secure Access

balaji.bandi — Thu, 16 Oct 2025 01:45:22 GMT

You can look at Secure VPN Access FAQ :

https://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/116312-qanda-anyconnect-00.html#toc-hId--539196147

Re: Session timeout when using Cisco Secure Access

msyk.oym — Mon, 20 Oct 2025 07:41:46 GMT

It seems that you can set Session Timeout and Idle Timeout in Cisco Secure Client's AnyConnect VPN.

In environments where Secure Access is connected via a VPN router, such as a branch office, Cisco Secure Client is not installed.
Proxy authentication is required when accessing Internet sites using a web browser.

If you think about it, the IdP authentication frequency is set to Daily, so we assume that the Session Timeout will be Daily.

Hypothetically, if Secure Access were allowed to set an idle timeout, connections to Secure Access would remain open until they timed out, increasing the number of threads Secure Access uses and potentially causing network latency.