Wireless Access

Reply
Occasional Contributor II
Posts: 13
Registered: ‎02-18-2016

Help needed! idle timeout on ClearPass

does anyone know how to configure guest user idle timeout on ClearPass 6.5.5.78974 (CP-HW-5K platform).?

MVP
Posts: 4,309
Registered: ‎07-20-2011

Re: Help needed! idle timeout on ClearPass

For the Guest Module Management ?
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Guru Elite
Posts: 8,793
Registered: ‎09-08-2010

Re: Help needed! idle timeout on ClearPass

Can you provide some more detail on what timeout you're referring to?

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II
Posts: 13
Registered: ‎02-18-2016

Re: Help needed! idle timeout on ClearPass

Tim,

Guest users have to re-authenticate after a short period of time (5mins).  Guest users authenticate throught a portal page and accounts are set to expire at 1 day

Aruba
Posts: 1,296
Registered: ‎08-29-2007

Re: Help needed! idle timeout on ClearPass

You would typically use the mac-caching functionality to achieve that.

 

Otherwise you can override the global timeout in the captive portal profile on the controller and set it to something appropriate.


If my post is helpful please give kudos, or mark as solved if it answers your post.

ACCP, ACMP, ACMX #294
mclarke@arubanetworks.com
Guru Elite
Posts: 8,793
Registered: ‎09-08-2010

Re: Help needed! idle timeout on ClearPass

Do you have MAC-caching configured?

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II
Posts: 13
Registered: ‎02-18-2016

Re: Help needed! idle timeout on ClearPass

Mac-caching is configured, but I don't see anything about idle timeout and session time out

Occasional Contributor II
Posts: 13
Registered: ‎02-18-2016

Re: Help needed! idle timeout on ClearPass

Michael,

 

Does controllers handle session timeout and idle timeout even when users authenticate using CPPM & Radius?

Aruba Employee
Posts: 5
Registered: ‎01-11-2012

Re: Help needed! idle timeout on ClearPass

When the client initially connects to the SSID, they will fall into the initial Role and hit the captive portal. On successfull CP auth, the uses MAC address will be cached on the Clearpass server and when the next time the users try to connect to the SSID, they will pass MAC auth and will fall into the mac-auth default role. 

 

Is MAC authenticated configured for the Guest SSID?

What is the MAC auth default role?

 

Occasional Contributor II
Posts: 13
Registered: ‎02-18-2016

Re: Help needed! idle timeout on ClearPass

@skrishnamoorthy, would guest authentication for SSID be configured on controller or CP?  I do not have access to the controllers, they are managed by another team.  Can you tell me where to check MAC default role?

 

Search Airheads
Showing results for 
Search instead for 
Did you mean: