Solved: Cisco Controller enable session timeout

wjsenqkf2 · ‎01-05-2021

Hello, everyone.

I have a question. Please help me.

I am doing user authentication with 802.1x on a specific WLAN.
And there is'enable session timeout' option in WLAN->Advanced.
This option is the timeout value for re-authentication of the wireless device.
Here I want to know.
If set to 60 minutes, will the wireless device re-authenticate after 60 minutes?
If the traffic continues to occur on the wireless device, does it require re-authentication?
I would like to know if the wireless device needs to be re-authenticated even if traffic is flowing.

Thanks.

Grendizer · ‎01-05-2021

Even so, the client has to reauth every 60 minutes but this will be done in the background by the device without interaction from the user.

View solution in original post

balajiviswanathmohan · ‎01-05-2021

I have not enabled session timeout. Not selecting the Enable Session Timeout check box is equal to setting it to 0, which is the maximum value for a session time out for each session type. If you configure a session-timeout of 0, it means 86400 seconds for 802.1X(EAP).

You should still test and select the timeout value which is optimal for your environment.

View solution in original post

Grendizer · ‎01-05-2021

Even so, the client has to reauth every 60 minutes but this will be done in the background by the device without interaction from the user.

balajiviswanathmohan · ‎01-05-2021

Hi, Please see my comments below.

If set to 60 minutes, will the wireless device re-authenticate after 60 minutes? - Yes it has to. The session timeout is the maximum time for a client session to remain active before requiring re-authorization.
If the traffic continues to occur on the wireless device, does it require re-authentication? - Yes. It happens in the background for 802.1X. If you were using Web-Auth, it would prompt the user to login into the captive portal to be authenticated again.
I would like to know if the wireless device needs to be re-authenticated even if traffic is flowing. - Yes, it has to re-authenticate even when there is active traffic.

wjsenqkf2 · ‎01-05-2021

@balajiviswanathmohan wrote:
Hi, Please see my comments below.
If set to 60 minutes, will the wireless device re-authenticate after 60 minutes? - Yes it has to. The session timeout is the maximum time for a client session to remain active before requiring re-authorization.
If the traffic continues to occur on the wireless device, does it require re-authentication? - Yes. It happens in the background for 802.1X. If you were using Web-Auth, it would prompt the user to login into the captive portal to be authenticated again.
I would like to know if the wireless device needs to be re-authenticated even if traffic is flowing. - Yes, it has to re-authenticate even when there is active traffic.

wjsenqkf2 · ‎01-05-2021

What is the recommended value for session timeout? I use Windows 10 pc and Apple mac book.

balajiviswanathmohan · ‎01-05-2021

I have not enabled session timeout. Not selecting the Enable Session Timeout check box is equal to setting it to 0, which is the maximum value for a session time out for each session type. If you configure a session-timeout of 0, it means 86400 seconds for 802.1X(EAP).

You should still test and select the timeout value which is optimal for your environment.

wjsenqkf2 · ‎01-06-2021

Ok.

Many thanks.

balajiviswanathmohan · ‎01-06-2021

You are Welcome.