I have two 5506 boxes running 9.8.3 patch 29. I login first time with ASDM and perform whatever tasks.
I left ASDM open and move to other windows (probably a browser); after couple minutes a pop up from ASDM login credetials shows up.
Obviously if I return to ASDM to make any other change I have to again enter my password.
Any idea how can I avoid re-login until next time I close/open ASDM?
Here's AAA config:
show run aaa
aaa authentication serial console LOCAL
aaa authentication http console RADIUS_GROUP LOCAL
aaa authentication ssh console RADIUS_GROUP LOCAL
aaa authentication enable console RADIUS_GROUP LOCAL
aaa authorization command LOCAL
aaa accounting serial console RADIUS_GROUP
aaa accounting enable console RADIUS_GROUP
aaa accounting ssh console RADIUS_GROUP
aaa local authentication attempts max-fail 5
aaa authorization exec authentication-server auto-enable
I believe this is related to the idle timeout, the command would be http server idle-timeout x and you would specify a value in minutes.
Hopefully this is helpful.
It might be - I ll try tomorrow; before that I have two questions:
idle-timeout Idle timeout in minutes (single routed mode only in case of ASDM)
session-timeout Session timeout in minutes (single routed mode only)
I am clear about idle-timeout, but what exactly does session-timeout means?
2nd: If I have another firewall like this
Security context mode: multiple
asa01/admin/pri/act# show firewall
Firewall mode: Router
Does this means none of the two settings do apply?
The session timeout is a hard limit on the connection time, even if the session is being used, if you had it set to say 10 min the ASA would end the session after 10 minutes even if you were actively using it.
As for multi context mode I'm not too familiar with it but according to the config guide you should be able to use the commands.
In multiple context mode, complete this procedure in the context execution space. To change from the system to a context configuration, enter changeto context name.