Assume you mean changing the Attribute filters in the following default time source authentication source?
Typically MAC auth as majority of the AV devices do not have the ability to install certificates, but there are some such as Apple TVs that we can deploy certs and use EAP-TLS.
Original Message:
Sent: Apr 26, 2024 10:40 AM
From: chulcher
Subject: ClearPass calculated value for Session-Timeout
Create a new query in [Time Source] that returns number of seconds between Now() and your desired time, return that value as the Session-Timeout.
Are you using MAC auth or 802.1X for the devices?
------------------------------
Carson Hulcher, ACEX#110
Original Message:
Sent: Apr 26, 2024 01:27 AM
From: tobi.coonan
Subject: ClearPass calculated value for Session-Timeout
Hi community,
Has anyone been able to create a session-timeout value for a specific time of the day?
I've got a use case where we want to have our wireless AV devices re-authenticate after business hours (e.g. daily at 2am), rather than after a fixed number of seconds after authentication.
Currently we have the Radius: IETF Session-Timeout to 10800, which means every 3hrs the device re authenticates.
Issue with this is if a user is projecting to the device they lose connection and have to reconnect.
We could extend the session timeout, but that would still have the potential issue where a user during business hours is connected and it drops.
Thoughts?