Options

SSLVPN client inactivity timeout

bartoltechbartoltech
edited March 2020 in Firebox - VPN Mobile User

Does anyone know if there is a way to timeout an SSLVPN session due to client inactivity? As I understand it, the SSLVPN is designed to stay up (good thing) and it does as long as the remote computer is running. Specifically, we are looking at meeting PCI DSS 12.3.8 "Automatic disconnect of sessions for remote-access technologies after a specific period of inactivity"

My only thought is enforcing inactivity setting on the remote OS so it hibernates/sleeps and the SSLVPN session would then time out. Running XTM370, OS 12.5.1, AuthPoint
Thanks,
Tim

Comments

  • Options
    Bruce_BriggsBruce_Briggs

    I have never found a way to limit SSLVPN sessions automatically in XTM.

    Try unselecting the SSLVPN Authentication setting of "Auto reconnect after a connection is lost" and see if that helps.
    Also consider selecting "Force users to authenticate after a connection is lost".
    Let us know if either of these help or hurt.

  • Options
    bartoltechbartoltech

    Thanks Bruce, I suspect that is the best we can do on the WatchGuard side of things.

Sign In to comment.