last person joined: 12 hours ago 

Enterprise security using ClearPass Policy Management, ClearPass Security Exchange, IntroSpect, VIA, 360 Security Exchange, Extensions and Policy Enforcement Firewall (PEF).

Clearpass and VPN users

  • 1.  Clearpass and VPN users

    Posted Jun 15, 2020 12:56 PM

    Hello im doing some labs and was wondering if its possible to disconnect a vpn users from an active session when his time expire?


    Right now i got it configured with a fortinet firewall.  Everything works fine.   But the only thing it does not do is that when the times ends, it wont disconnect the user automatically.   He will have to disconnect  so the rule that he cant get in again because the account is expired  works, otherwise if he has his session active and connected he can be on the corporate network.


    I would like to do this

    If their account ends at 2 pm of today  then disconnect it at 2 pm of today even if he is connected.


    Guess i ll have to use CoA.

    Any examples of how to create the policies for this?