Hot!IPSec VPN 2fa Timeout Settings

Author
tdhaslett
New Member
  • Total Posts : 7
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/11/14 12:53:57
  • Status: offline
2020/03/23 06:34:15 (permalink)
0

IPSec VPN 2fa Timeout Settings

Hi All,
Is there a way to enforce a timeout on the 2fa authentication period?
We are required to enforce refreshing of 2fa authentication every 24 hours to maintain certification while working remotely. I have not found a way to set this in our Fortigate 200D. I am fine with setting a timeout on the VPN connection itself, thereby forcing a refresh of 2fa.
Also, I would prefer a session timeout rather than an inactivity timeout, if possible.
 
Thanks!
Tim
#1

1 Reply Related Threads

    Toshi Esumi
    Expert Member
    • Total Posts : 2031
    • Scores: 186
    • Reward points: 0
    • Joined: 2014/11/06 09:56:42
    • Status: offline
    Re: IPSec VPN 2fa Timeout Settings 2020/03/23 09:28:54 (permalink)
    0
    The first thing I found in my Internet search was my own post about idle timeout on this forum two years ago.
    https://forum.fortinet.com/tm.aspx?m=159981
    I don't see other timeout setting in IPsec phase1 config.  Probably auth server side including 2Factor auth doesn't have a mechanism to kill the VPN once it's successfully authorized.
     
    If it were SSL VPN, you could set the session timemout to drop the connection as you wanted.
    #2
    Jump to:
    © 2020 APG vNext Commercial Version 5.5