Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 4 subscribers
  • Views 3451 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

HTML5 VPN Portal doesn't time out

Gabriele Arienti

Running 9.509-3 on SG330

 

I re-opened a tab in Chrome (latest as of today) and I was still logged in as one of my user that I helped troubleshooting last week.

I don't think the session times out, I didn't have to login as all.

 

I think that's a problem.



This thread was automatically locked due to age.
  • 0

    Hi Gabriele  and welcome to the UTM Community!

    Just curious, had you logged out of the User Portal?

    Cheers - Bob
    PS Moving this thread to the VPN forum.

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    I did not, but I expected the portal to automatically get rid of the session somehow.

     

    We use dual factor with RSA app and radius to authenticate and it changes every 60 seconds. Ideally the client browser could be high jacked and reuse that session, right!?

    Making the DFA useless. If I could setup a few minutes timeout it would be great, my users only use it to download their OpenVPN config files.

  • 0 in reply to Gabriele Arienti

    Thanks for bringing this to everyone's attention, Gabriele.  You might want to vote for and comment on UserPortal: Configurable Timeout Option.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML