session timeout

chemban_2015 · ‎10-20-2015

session timeout means that your authenticated user session expires in 1800 seconds.

Does it means the client re authenticate by entering their credentials again after 1800 secondstimeout

Thanks

mohanak · ‎10-20-2015

The Session Timeout is the maximum time for a client session with the WLC. After this time, WLC de-authenticates the client, and the client goes through the whole authentication (re-authentication) process again. This is a part of a security precaution to rotate the encryption keys. If you use an Extensible Authentication Protocol (EAP) method with key management, the rekeying occurs at every regular interval in order to derive a new encryption key. Without key management, this timeout value is the time that wireless clients need to do a full reauthentication. The session timeout is specific to the WLAN. This parameter can be accessed from the WLANs > Edit menu.

chemban_2015 · ‎10-20-2015

Hi

Thank you mohan , for testing purpose i have created an SSID called TEST with external authentication .

wlan test 1 TEST
aaa-override
accounting-list deflist
client vlan test
no exclusionlist
ip flow monitor wireless-avc-basic input
ip flow monitor wireless-avc-basic output
nac
no security wpa
no security wpa akm dot1x
no security wpa wpa2
no security wpa wpa2 ciphers aes
security dot1x authentication-list deflist
session-timeout 120
no shutdown

Then i checked whether it forcing reauthentication.

But the traffic continuously without reauthentication

Please help

Thanks

chemban_2015 · ‎10-20-2015

Hi,

What is the difference between

Ms Timeout and Session Timeout

Thanks