Be considerate of the logging (radius accounting messages) and load (authentication protocol, identity store, eap-tls if used and the key length..etc) since this is a large deployment, you may want to consider centralizing this in ISE by using the session-timeout function.

What is the use case around reducing the reauthentication interval?

Consider redirections if they are a part of your policies..etc.

Thanks,

The purpose is just to reduce logs .

No redirection to consider on this case.

Regards

It is best practice to increase the authentication timer in order to reduce logs. However, that also decreases your security since devices/users are challenged less frequently. Thus, you run into a potential situation that a terminated user might still have access to your network. With that said, you should have a proper termination check list where the user/device is properly deleted/disabled and CoA issued :)

So in summary:

Higher timer = Lower logs amount and security

Lower timer = Higher logs amount and security

I hope this helps!

Thank you for rating helpful posts!

Yes it helps Neno.

Thank you very much for your answer.

regards

You are most welcome! Let us know if you have any additional questions/concerns. If not, then you should mark the thread as "answered" :)

Neno

How can i do that Neno?

You should be seeing a "Correct Answer" button under each reply. Click that button under the reply that you found most useful. Also, you can mark multiple answers as "correct."