• SonicOS and SonicOSX 7 Users
• Configuring Users Status
  • Logging Out Users
    • Logging Out a Single User
    • Logging Out Multiple Users
  • Displaying Inactive Users
  • Displaying Unauthenticated Users
  • Displaying the User Count
  • Refreshing the Users List
• Configuring User Settings
  • User Login Settings
    • Setting the Authentication Method for Login
    • Setting the Single-Sign-On Methods
    • Requiring User Names be Treated as Case-Sensitive
    • Preventing Users From Logging in from More than One Location
    • Forcing Users to Log In Immediately After Changing Their Passwords
    • Displaying User Login Information Since the Last Login
  • One-Time Password Settings
  • Configuring the User Web Login Settings
    • Setting the Timeout for the Authentication Page
    • Setting How the Browser is Redirected
    • Managing Redirections to the Login Page
    • Using a CHAP challenge to Authenticate Users
    • Redirecting Unauthenticated Users
    • Adding URLs to Authentication Bypass
  • User Session Settings
    • User Session Settings for SSO-Authenticated Users
    • User Session Settings for Web Login
  • Accounting
    • Configuring RADIUS Accounting
      • Sending RADIUS Accounting Information to Servers
      • Configuring User Accounting
      • Testing RADIUS Accounting
      • Editing RADIUS Servers
      • Deleting RADIUS Servers
    • Configuring TACACS+ Accounting
• Configuring Guest Services
  • Adding Guest Profiles
  • Editing Guest Profiles
  • Deleting Guest Profiles
• Configuring Guest Accounts
  • Adding Guest Accounts
  • Editing Guest Accounts
  • Deleting Guest Accounts
    • Deleting a Guest Account
    • Deleting Multiple Guest Accounts
    • Deleting All Guest Accounts
  • Managing Guest Status
    • Logging Out Guests
    • Logging Out All Guests
• Configuring Local Users and Groups
  • About Authentication and Passwords
    • Using Two-Factor Authentication
    • Enforcing First Login Password Change
  • Configuring Local Users
    • Quota Control for all Users
    • Viewing Local Users
    • Adding Local Users
      • Configuring Local Users Settings
      • Configuring Local Users Groups
      • Configuring Local Users VPN Access
      • Configuring Local Users User Quota
    • Editing Local Users
  • Configuring Local Groups
    • Adding Local Groups
      • Configuring Local Groups Settings
      • Configuring Local Group Settings Members
      • Configuring Local Group Settings VPN Access
      • Configuring Local Group Settings Administration
    • Editing Local Groups
• SonicWall Support
  • About This Document

User Session Settings

These settings apply to all users when authenticated through your SonicWall network security appliance.

To configure user session settings

1. Navigate to Users > Settings > User Sessions.

To configure settings that apply to all users who are authenticated through the firewall

1. Navigate to Users > Settings > User Sessions.
2. In the Inactivity timeout (minutes) field, specify the length of time for inactivity after which users are logged out of the firewall. The default is 15 minutes.
3. From Don’t allow traffic from these services to prevent user logout on inactivity, select the service or service group option to be prevented from logging out inactive users. This option saves system overhead and possible delays re-identifying aged-out authenticated users by making them inactive instead of logging them out. Inactive users do not use up system resources and can be displayed on the Users> Status page. The default is None.
4. For the following For logging of connections on which the user is not identified options, choose the type of logging, Log no user name or Log user name, to be done, and, optionally, the log user name:
   • If SSO fails to identify the user: Log user name Unknown SSO failed (default)

   • For connections that bypass SSO: Log user name SSO Bypass (default)

     This option also can be set in the SSO Bypass section of the Enforcement of the SSO Authentication Configuration dialog.

   • For connections originating externally: Log no user name (default). If Log user name is selected, the default user name is Unknown (external).
   • For other unidentified connects: Log no user name (default). If Log user name is selected, the default user name is Unknown.

5. Specify how to handle a user’s connections that remain after the user logs out from the SonicWall appliance with the Actions for remaining user connections on logout options.

   	Action
   Type of logout	For connections requiring user authentication 1	For other connections 2
   On logout due to inactivity	Leave them alive (default) Terminate them Terminate after… minutes	Leave them alive (default) Terminate them Terminate after… minutes
   On active/reported logout	Leave them alive Terminate them (default) Terminate after… minutes	Leave them alive Terminate them Terminate after… 15 minutes (default)
   1. Applies for connections through access rules that allow only specific users. 2. Applies for other connections that do not have a specific user authentication requirement.

   You can set different actions for:

   • Inactivity logout, where the user might or might not still be logged into the domain/computer.
   • Users actively logging themselves out or being reported to the SonicWall network security appliance as being logged out (the latter normally means that the user has logged out from the domain/user).
6. Click Update.

• User Session Settings for SSO-Authenticated Users
• User Session Settings for Web Login