IAS / ADS session timeout values not having an effect on the clients when using Captive Portal; Session timeout values configured in ADS for individuals or a group of users connecting using Captive Portal do not seem to have any effect on limiting the clients as per the ADS configuration.
KB ARTICLE TYPE: Troubleshooting
RELATED PRODUCTS: N/A
RELATED SOFTWARE VERSIONS: 3.6, 3.4.2-135/140
KEYWORDS: IAS/ADS, captive portal
STEPS TAKEN FOR TROUBLESHOOTING:
STEP 1: Verify configured values in ADS for relevant users.
STEP 2: Attempt to connect one of these users to Captive Portal to see if the ADS configured values have any effect on the clients.
STEP 3: In the controller GUI, click on “Configuration” >> Security (Captive Portal) >> select profile >> click settings.
STEP 4: In the Captive Portal Session Timeout field, set non-zero value which is less than the value configured in ADS.
STEP 5: In the Captive Portal Activity Timeout field, set non-zero value which is less than the value configured in ADS.
RESOLUTION: Setting non-zero values in Captive Portal Session and Activity timeout fields. A value of zero would result in no timeouts being implemented.
ROOT CAUSE: A value of zero in the Portal Session and Activity timeout fields.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.