Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

User session not getting disconnected on closing the browser

We are using SOPHOS XG310 (SFOS 17.5.9 MR-9) for our enterprise users to provide internet access through Captive Portal. We have recently migrated from Cyberoam to Sophos.

After getting logged into the Captive portal, if the users directly close their browser without hitting the "Sign Out" button, the user session is not getting disconnected.

Please guide to resolve this issue.

 



This thread was automatically locked due to age.
Parents
  • Hi  

    If a user closes the captive portal without clicking Sign Out button, it will depend on your configurations at CONFIGURE > Authentication > Services | Web policy actions for unauthenticated users (captive portal). You should enable Preserve captive portal after login and Use keep alive to maintain user session. If not, then set the User Inactivity Timeout. 

    Regards

    Jaydeep

Reply
  • Hi  

    If a user closes the captive portal without clicking Sign Out button, it will depend on your configurations at CONFIGURE > Authentication > Services | Web policy actions for unauthenticated users (captive portal). You should enable Preserve captive portal after login and Use keep alive to maintain user session. If not, then set the User Inactivity Timeout. 

    Regards

    Jaydeep

Children
  • Jaydeep said:

    Hi  

    If a user closes the captive portal without clicking Sign Out button, it will depend on your configurations at CONFIGURE > Authentication > Services | Web policy actions for unauthenticated users (captive portal). You should enable Preserve captive portal after login and Use keep alive to maintain user session. If not, then set the User Inactivity Timeout. 

     

    Hi Jaydeep.

    Thanks for the Update.

    Actually I have already given the "User inactivity timeout" as 20 mins and disabled the "Use keep alive to maintain user session" option. But still the same behavior is observed.

    Also, earlier I was facing some issue with the LDAP authentication related to GROUPS in OpenLDAP. For that, the issue was escalated and a patch was applied by SOPHOS Team on our XG. After that, the authentication issue was resolved but this issue has now come up.

    Now I am not very sure whether that patch has something to do with this or not.

    Can you further guide me please.

    Thanks a lot.

  • Hi  

    Please configure as per the below information

    User inactivity timeout Inactive or idle time after which the user will be logged out.

    Data transfer threshold minimum amount of data to be transferred within the inactivity time. If the minimum data is not transferred within the specified time, the user will be marked as inactive.

    After applying changes if the issue persists, please contact technical support to investigate the issue further.

    Regards,

    Keyur
    Community Support Engineer | Sophos Support
    Sophos Support VideosKnowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link

  • Hi Keyur,

    Thanks for the update.

    I have already configured these options and the users are getting logged out after the given time. The arrangement works fine for me and I have not received any complaints so far.

  • Hi  

    Thank you for your information, please let us know if you need any further help.

    Regards,

    Keyur
    Community Support Engineer | Sophos Support
    Sophos Support VideosKnowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link