Configuring a Session Timeout Period
You configure a timeout period for user and device sessions that are monitored by event log sources, after which the JIMS server will attempts to send a domain PC probe to the device and receive a reply. If the PC probe of the device fails, the JIMS server infers a logout event. The PC probe helps determine a logged-in or logged-out state for the user or device.
The setting of the Session Timeout value depends on the time sensitivity of the user firewall policies configured on the SRX Series devices.
An event log source can be a Microsoft Active Directory domain controller or Exchange server.
To configure the session timeout period:
- In the navigation pane, select Settings and then select the General tab.
- Click Edit.
- In the User Session Configuration section of the Settings > General tab, enter a session timeout period in the
Logoff Time text field. The JIMS server setting applies across all
SRX Series devices. This value can be between 1 and 1440 minutes.
The default value is 1440 minutes.
This timer starts after Juniper Identity Management Service sends a report to the SRX Series devices. Any login event, successful PC probe, or user update restarts this timer.
If PC Probe credentials have not been configured, Juniper Identity Management Service considers the user logged out when the session timeout period has expired.
- Click Save to save the settings.