All:

I have been working on my ASA 5510 version 8.2(1) trying to change the maximum connection time.  Originally the custom "Group Policy" for IPSEC (Remote Access VPN) was set to inherit the settings from the default system Group Policy (DfltGrpPolicy).  The custom group policy for the sake of this discussion is called "ABCD".  I have modified the settings on the default (DfltGrpPolicy) as the custom policy (ABCD) was inheriting the configuration from default to disconnect after 1200 minutes.  I changed the setting "maximum connection time" to 1200 minutes.  I saved the configuration and what not then connected my VPN client, after two (2) hours I was disconnected.  Something just doesn't add up.

I went ahead and deselected all inherited properties and manually configured them for the ABCD custom policy.  No longer was the ABCD custom policy configured to use the inherited properties/settings.  I saved the configuration again tested but instead of having a 1200 minute connection limit, I have 120 minute connection limit.  Inside Monitoring --> VPN --> Sesssions : I can click on my session and see Session details".  The Group Policy and Connection Profile properly list the "ABCD" custom profile.  However, the "Conn Time Out" setting is: 120 minutes.  I am completely stumped as to what is going on.

In the actual running config I see:

group-policy abcd attributes

banner none

wins-server value 123.123.123.123

dns-server value 123.123.123.123

dhcp-network-scope none

vpn-access-hours none

vpn-simultaneous-logins 3

vpn-idle-timeout 60

vpn-session-timeout 1200

I'm stumped as to what I need to do next to get this working short of a recycle of the ASA.. Any help you can provide would be greatly appreciated.

Thanks