Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
557
Views
10
Helpful
2
Replies

Cisco ISE - Time Limit on Limited Access Policy

Go to solution
jlaguerre
Level 1
Level 1

‎01-19-2023 06:31 AM

Can a Time Limit be placed on Policy Set which uses the Pre-Auth/Limited Access Authorization Profile.
Scenario: A PC Authenticated for Machine Access and is given Limited Access, awaiting User Login.

If user doesn't login after a set period of time, the PC is automatically switched to denied access. Is this scenario possible?

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ahollifield
VIP
VIP
In response to Karsten Iwen

‎01-19-2023 10:55 AM

Yeah without user feedback how would this work?  What is the need to switch to a deny-access condition if you make your "machine authentication only" condition restrictive enough?    

View solution in original post

2 Replies 2

Go to solution
Karsten Iwen
VIP
VIP

‎01-19-2023 06:46 AM

I am not aware of a way to achieve this. But I am pretty sure that if something like this is done, it will cause some trouble. Will users understand that they have to disconnect the ethernet-link to make it work if they first start the PC and then go for a coffee without logging in? 

Go to solution
ahollifield
VIP
VIP
In response to Karsten Iwen

‎01-19-2023 10:55 AM

Yeah without user feedback how would this work?  What is the need to switch to a deny-access condition if you make your "machine authentication only" condition restrictive enough?    

Customers Also Viewed These Support Documents