How do I automatically set telnet sessions to deactivate after a period of inactivity?
Sometimes there are instances where one cannot telnet into a 9700 or 9810, despite credentials being correct.
This is compounded by the fact that others are logged into the same device.
AI02 9700 10.52.216.20>> sh sessions
--- Active (logged in) Users --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
ID User Port Location Status Login Time Deact
(secs)
-- ---------------------------------------------------------------------------------- ------- --------------------------------------------------------------- ------ --------------------------------------------------------------- ------
0 - Console local AUTH - -
2 officer Telnet 10.52.8.11 CONN 2017-02-08 19:28:47 -
3 officer Telnet 10.52.8.12 CONN 2017-02-08 19:28:47
4 officer Telnet 10.52.8.13 CONN 2017-02-08 19:28:47
5 officer Telnet 10.52.8.14 CONN 2017-02-08 19:28:47
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
etc.
By default, there are 10 concurrent sessions allowed.
Normally, in order to free up connections, one has to hope that someone else is logged in and then have them issue a "deactivate session all" and then select "yes".
However, it is possible to create a global rule which does this automatically for all hung telnet sessions.
This command is "SET SYSTEM USERCONFIG SECUREDELAY 5", which will purge disconnected telnet sessions after 5 minutes.
The key word is "SECUREDELAY", which specifies the number of minutes that a user session can remain idle before it is automatically timed out.
|