That makes sense, then there is no reason to set that timer... Food for thought...
We had an unauthenticated client machine on the wireless network, using wired, but associated with an AP and holding a DHCP IP address. For hours that machine was conducting little raids here and there trying to compromise user accounts. Once blocked in the Filters, activity ceased. What I was trying to accomplish was if the client machine was holding an IP but not authenticating, I wanted to send them to Quarantine or anywhere after ten minutes. How were they able to conduct the raids, the authentication ports are open to the AD controllers in the Unauthenticated Role... From: Cisco Clean Access Users and Administrators [mailto:[email protected]] On Behalf Of Jim Thomas Sent: Wednesday, February 18, 2009 14:20 To: [email protected] Subject: Re: Session Timer Unauthenticated Role, it's a loop and es no bueno. Thanks Jim Jim Thomas Area Networks, Inc. CCIE Security #16674 CCSP,CCNP,CCDP [cid:[email protected]] [email protected]<mailto:[email protected]> [cid:[email protected]] Office: 650-242-8050 [cid:[email protected]] Cell: 916-342-2265 [cid:[email protected]] [cid:[email protected]][cid:[email protected]] -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[email protected]] On Behalf Of Speight, Howard Sent: Wednesday, February 18, 2009 1:38 PM To: [email protected] Subject: Session Timer Let's say the Session Timer is set for ten minutes on the Unauthenticated Role and the user does not authenticate within that ten minute period, where does the user go? Thanks, Howard
<<inline: image001.gif>>
<<inline: image002.gif>>
<<inline: image003.jpg>>
<<inline: image004.jpg>>
<<inline: image005.png>>
