The user-manage online-user aging-time command configures the timeout period for online users.
The undo user-manage online-user aging-time command restores the default timeout period.
| Parameter | Description | Value |
|---|---|---|
| aging-time | Specifies the timeout period for online users. | The value is an integer ranging from 1 to 4294967295, in minutes. The default value is 30. |
After a user is authenticated, the monitoring entry of this online user is generated in the online user monitoring list. If a user does not initiate any service traffic within the timeout period, the monitoring entry of this online user is deleted from the monitoring list. This user needs to be authenticated again when initiating a service request next time. The monitoring list has a limited storage space. To save storage space for new online users, configure an appropriate timeout period for the online users who exist in the monitoring list by running the user-manage online-user aging-time command. If the timeout period is too long, the storage space of the online user monitoring table may be full, and new users cannot log in. If the timeout period is too short, users may frequently log in.
The new timeout period of online users does not take effect on the currently online users.
You are advised to set the timeout period for SSO users to a slightly large value to prevent the FW from logging out users unexpectedly.