07-16-2019 07:35 AM - edited 07-16-2019 07:38 AM
I was going over the following two communities guide:
https://communities.cisco.com/message/276046#276046
I have some questions:
1. Is there a specific reason to use radius session timeout of 900 seconds while user is being permitted? I mean I could even use 600 seconds or less to block closer to 1hr mark right?
2. Is there a way to limit user access to 1 hr, but then allow them to be redirected to hotspot so they can go through aup and have 1 hr access again? So continuous 1 hr access if aup is accepted again? Similar to what is possible in self-register guest portal where the guest account can be restricted to 1hr, but allows user back to self-register portal allowing them access again.
3. For point 2, is there a way to do this without purging the endpoint - since shortest purge duration is 1 day and hourly purge option is not available?
Solved! Go to Solution.
07-16-2019 11:23 AM
@Madura Malwatte wrote:
I was going over the following two communities guide:
https://communities.cisco.com/message/276046#276046
I have some questions:
1. Is there a specific reason to use radius session timeout of 900 seconds while user is being permitted? I mean I could even use 600 seconds or less to block closer to 1hr mark right?
JAK > would be good to separate and explain in more details
2. Is there a way to limit user access to 1 hr, but then allow them to be redirected to hotspot so they can go through aup and have 1 hr access again? So continuous 1 hr access if aup is accepted again? Similar to what is possible in self-register guest portal where the guest account can be restricted to 1hr, but allows user back to self-register portal allowing them access again.
JAK > Why not just redirect using LastAUPAcceptance every hour to the AUP?
3. For point 2, is there a way to do this without purging the endpoint - since shortest purge duration is 1 day and hourly purge option is not available?
07-16-2019 11:23 AM
@Madura Malwatte wrote:
I was going over the following two communities guide:
https://communities.cisco.com/message/276046#276046
I have some questions:
1. Is there a specific reason to use radius session timeout of 900 seconds while user is being permitted? I mean I could even use 600 seconds or less to block closer to 1hr mark right?
JAK > would be good to separate and explain in more details
2. Is there a way to limit user access to 1 hr, but then allow them to be redirected to hotspot so they can go through aup and have 1 hr access again? So continuous 1 hr access if aup is accepted again? Similar to what is possible in self-register guest portal where the guest account can be restricted to 1hr, but allows user back to self-register portal allowing them access again.
JAK > Why not just redirect using LastAUPAcceptance every hour to the AUP?
3. For point 2, is there a way to do this without purging the endpoint - since shortest purge duration is 1 day and hourly purge option is not available?
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: