VTY session timeout

samarjitdas · ‎09-08-2011

If I connect to cisco switch through vty and provide username & password only once which is wrong and then close the putty window, it results one occupancy in vty channel out of default 5 and never get disconnected until manually kill up the session.It happened with me most of time where login attempt was more than 4 and as a result I was unable to login to switch through vty. Finally device was connected through console port and session had to be killed.So it there any way out which will automatically kill those idle session.

line vty 0 4

exec-timeout 5 0

password 7 104D000A0618

transport input ssh

CHN-CCT-SW-01#sh users

Line User Host(s) Idle Location

1 vty 0 noc idle 00:06:39 172.18.120.84

* 2 vty 1 admin idle 00:00:00 172.18.120.84

sivaksiv · ‎09-09-2011

Hi,

You can modify the length of time that can occur before the ACE automatically logs off an inactive user by using the login timeout command in configuration mode. This command specifies the length of time that a user session can be idle before the ACE terminates the console, Telnet, or SSH session.

http://www.cisco.com/en/US/docs/app_ntwk_services/data_center_app_services/ace_appliances/vA3_1_0/configuration/admin/guide/basiccfg.html#wp1288138

The syntax for the login timeout command is as follows:

login timeout minutes

The minutes argument specifies the length of time that a user can be idle before the ACE terminates the session. Valid entries are from 0 to 60 minutes. A value of 0 instructs the ACE never to timeout.

The default is 5 minutes.

For example, to specify a timeout period of 10 minutes, enter the following command:

host1/Admin(config)# login timeout 10

To restore the default timeout value of 5 minutes, enter the following command.

host1/Admin(config)# no login timeout

To display the configured login time value, use the show login timeout command in Exec mode. For example, enter the following command:

host1/Admin# show login timeout

Login Timeout 10 minutes.

Hope this helps.