Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
797
Views
0
Helpful
1
Replies

Cisco WLC: what is the point of enabling session timeout on a WPA2 PSK WLAN?

Sam Brynes
Level 1
Level 1

‎08-06-2019 03:00 PM - edited ‎07-05-2021 10:49 AM

With 802.1x, usernames / passwords or certificates are used. A user's account can be disabled, locked out, or removed, and you'd want to shut off their access.

 

With PSK, everyone uses the same password. If you were to change the password, you'd have to disconnect everybody from the network anyway, and they'd have to reauthenticate. Can anyone think of why you'd want to set a session timeout on the WLC for a PSK WLAN and force a re-auth at regular intervals?

Labels:
0 Helpful
1 Reply 1

Leo Laohoo
Hall of Fame
Hall of Fame

‎08-07-2019 12:06 AM

@Sam Brynes wrote:

With PSK, everyone uses the same password. If you were to change the password, you'd have to disconnect everybody from the network anyway, and they'd have to reauthenticate. 

Private PSK is different.  

@Sam Brynes wrote:

Can anyone think of why you'd want to set a session timeout on the WLC for a PSK WLAN and force a re-auth at regular intervals?

Some people don't know that once the wireless client gets "kicked out" (due to session timeout) the same client IMMEDIATELY joins the SSID.  

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card