Password policies can apply to administrator passwords or IPsec VPN preshared keys. You can set a password policy to enforce higher standards for both length and complexity of passwords. By default, the FortiGate unit requires only that passwords be at least eight characters in length, but up to 128 characters is permitted. Password authentication is effective only if the password is sufficiently strong and is changed periodically.
Enter the Authentication Timeout value in minutes.Go to User & Device > Authentication Settings.To set the security authentication timeout – web-based manager:
The maximum timeout is 4320 minutes (72 hours). You set the security user authentication timeout to control how long an authenticated connection can be idle before the user must authenticate again. This ensures a user’s session is cannot be spoofed and used maliciously for extended periods of time - re-authentication will cut any spoof attempts short. Also if a user is logged on and authenticated for an extended period of time, it is a good policy to have them re-authenticate at set periods. When you have configured authentication servers, users, and user groups, you are ready to configure security policies and certain types of VPNs to require user authentication.Īn important feature of the security provided by authentication is that it is temporary-a user must reauthenticate after logging out.
0 kommentar(er)
