How do I automatically set telnet sessions to deactivate after a period of inactivity?
Sometimes there are instances where one cannot telnet into a 9700 or 9810, despite credentials being correct.
This is compounded by the fact that others are logged into the same device.
AI02 9700 10.52.216.20>> sh sessions
--- Active (logged in) Users --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
ID User Port Location Status Login Time Deact (secs) -- ---------------------------------------------------------------------------------- ------- --------------------------------------------------------------- ------ --------------------------------------------------------------- ------ 0 - Console local AUTH - - 2 officer Telnet 10.52.8.11 CONN 2017-02-08 19:28:47 - 3 officer Telnet 10.52.8.12 CONN 2017-02-08 19:28:47 4 officer Telnet 10.52.8.13 CONN 2017-02-08 19:28:47 5 officer Telnet 10.52.8.14 CONN 2017-02-08 19:28:47 ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- etc.
By default, there are 10 concurrent sessions allowed. Normally, in order to free up connections, one has to hope that someone else is logged in and then have them issue a "deactivate session all" and then select "yes".
However, it is possible to create a global rule which does this automatically for all hung telnet sessions. This command is "SET SYSTEM USERCONFIG SECUREDELAY 5", which will purge disconnected telnet sessions after 5 minutes.
The key word is "SECUREDELAY", which specifies the number of minutes that a user session can remain idle before it is automatically timed out.
|