Re: authentication keeps prompting - idle time out

angfeglandagan · ‎09-02-2009

hi,
just a query if anyone here experienced this kind of behavior or is this normal on the default idle time of the browser.

i have wsa 650 and already configured on ldap , its working pretty fine.

my question is: is there a default idle time on the proxy to prompt again the authentication?
is there a default time out on idle time on the browser before a user gets prompted with the credentials?

pls help..

thank you

khoanguy · ‎09-08-2009

There is a default idle time out of 60 minutes on the Ironport proxy, which is configurable through the CLI under "fullwsaconfig > prox.etc > maxTransparentAuthTtl". It controls when the browser will be re-challenged for authentication.

angfeglandagan · ‎09-09-2009

hi khoa,
do you mean this is not applicable to wsa with forward proxy mode config?

or this is across deployment mode.

mine is deployed in forward proxy mode

khoanguy · ‎09-17-2009

since this setting relates to ip to user mapping or cookie time, then it should apply to all proxy mode.

Some browser also have credential caching, so it might not matter for some clients with explicit proxy settings, varies by browers or settings done to them.

authentication keeps prompting - idle time out

Webex CC - API to get the agent idle time with their idle code

【原创】Eigrp hold time | hello time | timers

StarOS: tacacs ユーザの idle-session threshold ついて

事例 : Authentication attempt timed out について

3.3 MAC Authentication Bypass for Wired and Wireless Access