09-08-2012 10:39 PM - edited 02-21-2020 06:19 PM
Dear All,
I am facing an issue. When my clients are connecting to IPSec remote VPN after an hour it automatically disconnects the connection. User need to re-authenticate. I also changed the timers of IPSec SA and ISAKMP timer, but still same problem persist.
As per my findings my user authentication is getting from Cisco ACS/Radius server, which is running on default parameters and this policy is enforced by Cisco ACS. i there any suggestion how can i set the timer and rectify this issue.
Any suggestion ???
Waiting for your Responce.
Regards
Yasir
Solved! Go to Solution.
09-08-2012 10:42 PM
Yasir,
Which version of ACS are you running, and most likely the "session-timeout" attribute is probably being sent, you can either extend thsi attribute or remove it from the authorization condition.
Let me know what version of ACS you are running and I can walk you through it...
Thanks,
Tarik Admani
*Please rate helpful posts*
09-08-2012 10:42 PM
Yasir,
Which version of ACS are you running, and most likely the "session-timeout" attribute is probably being sent, you can either extend thsi attribute or remove it from the authorization condition.
Let me know what version of ACS you are running and I can walk you through it...
Thanks,
Tarik Admani
*Please rate helpful posts*
09-08-2012 11:44 PM
Dear Tarik,
ACS version is Version 5.2.0.26 .
Regards
Yasir
09-09-2012 10:01 AM
When you login to acs please go to your access policies and take a look at your vpn policy. In the authorization section please see which authorization profile is mapped to the vpn user. Then go to the policy elements which is above this section and then check the authorization profile and check the settings for the radius attributes for the profile mapped to your vpn policy.
Let me know if this helps
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide