Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 1 subscriber
  • Views 1445 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to change 15 re-auth timeout?

jmousse
I've run through the Bulletin Board, but could find nothing on this subject.

I'm using ASG 8.001 with forced AD web auth. Does anyone know how I can change the 15 minute timeout to say 30 or 60 minutes?

It's kind of a pain when filling out form & you click 'submit' only to be asked to re-auth. A good example is when I wrote this question. Another would be when watching a news site where the videos change sequentially, but stall in between due to re-auth prompt.

I'm sure that there's a .conf file somewhere. I just can't locate it.

Thanks so much.


This thread was automatically locked due to age.
  • 0
    WebAdmin 'HTTP/S' 'Advanced' tab 'Misc settings'.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    WebAdmin 'HTTP/S' 'Advanced' tab 'Misc settings'.

    If I'm not mistaken, that refers to the timeout of the web administrator. I'm referring to the 15 minute timeout for re-authentication when using forced AD web authentication for users.
  • 0 in reply to jmousse
    It's actually the timeout for transparent users with authentication, probably not what you're looking for.  I'd start an official Astaro support case, it's probably buried in the configuration database, if it's not hard-coded.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0
    If I'm not mistaken, that refers to the timeout of the web administrator. I'm referring to the 15 minute timeout for re-authentication when using forced AD web authentication for users.

    No, that's not for the administrator, that's, as Bruce makes precise, for user auth in mode "Transparent with authentication."  I don't think there's re-auth in "Basic user authentication" mode.

    In any case, why not use AD-SSO?  In that way, the user is never asked to authenticate.  Check out: HTTP/S Proxy Access with AD-SSO (Caution, the section "Configure User Authentication" should be eliminated as it has no effect on AD-SSO and can cause problems in larger organizations).  This is certified only with IE, but Firefox users have reported success also.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    Hi Bob:
    I appreciate your efforts. I hadn't gone that route because I was using Firefix, & because I'd wanted the extra security i.e. a zero day attack on port 80/443 could leak info, but may give it a try.
    Thanks again...
  • 0
    Hiii...
    Ya you can change it here   WebAdmin 'HTTP/S' 'Advanced' tab 'Misc settings'
    and you u can do one more thing, disable pop-up blocker in browser setting, because as pop-up blocker blocked authentication window, authentication time out starts, so just keep authentication window minimize till then, till you want to log on.