Session Policy; Session Policy Options - Cisco Servers User Manual

Chapter 10 Setting Up and Managing Administrators and Policy
Step 7
Step 8

Session Policy

Session Policy Options

78-13751-01, Version 3.0
To allow Cisco Secure ACS to use only a specified range of TCP ports for
administrative sessions, follow these steps:
Select the Restrict Administration Sessions to the following port range
a.
From Port x to Port y option.
b. In the y box type the highest TCP port in the range.
c. In the x box type the lowest TCP port in the range.
Click Submit.
Result: Cisco Secure ACS saves and begins enforcing the access policy settings.
The Session Policy feature controls various aspects of Cisco Secure ACS
administrative sessions. This section contains the following topics:
Session Policy Options, page 10-13
•
• Setting Up Session Policy, page 10-14
You can configure the following options on the Session Policy Setup page:
• Session idle timeout (minutes)—Defines the time in minutes that an
administrative session, local or remote, must remain idle before
Cisco Secure ACS terminates the connection. This parameter applies to the
Cisco Secure ACS administrative session in the browser only. It does not
apply to an administrator's dial-up session.
An administrator whose administrative session is terminated receives a
dialog box asking whether or not the administrator wants to continue. If the
administrator chooses to continue, Cisco Secure ACS starts a new
administrative session.
Cisco Secure ACS 3.0 for Windows 2000/NT Servers User Guide
Session Policy
10-13