04-21-2017 08:06 AM
We have some clients that connect in via a vpn connection. I have noticed that some do not disconnect for days. is there a way to reset all vpn connections at a specific time each day...say at 1:00AM? We are using a ASA 5508 w/SourceFire (Firepower), vpn connection is anyconnect.
Regards,
04-21-2017 08:46 AM
You can use EEM to do this. The following guide has an example to do exactly what you need:
http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/118087-technote-asa-00.html#anc7
event manager applet VPN-Disconnect
event timer absolute time 01:00:00
action 1 cli command "vpn-sessiondb logoff anyconnect noconfirm"
output none
04-21-2017 09:36 AM
You could also configure a 'max connect time' for the Anyconnect session. Set it to 24 hours and they will automatically be logged off 24 hours after connecting.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide