Increasing the user idle timeout leaves users in the user table long after they are gone and consumes resources. That gives an artifically inflated view of the user table. In addition, if you do not make sure that the DHCP leases match the user idle timeout time, it is possible that your dhcp server can give ip addresses of users that are already in the user table, producing conflicts. Increasing the user idle timeout should be for people who do not have an external policy server solution to do mac caching.