10-13
Cisco Secure ACS 3.0 for Windows 2000/NT Servers User Guide
78-13751-01, Version 3.0
Chapter10 Setting Up and Managing Administrators and Policy Session Policy
Step 7 To allow Cisco Secure ACS to use only a specified range of TCP ports for
administrative sessions, follow these steps:
a. Select the Restrict Administration Sessions to the following port range
From Port x to Port y option.
b. In the y box type the highest TCP port in the range.
c. In the x box type the lowest TCP port in the range.
Step 8 Click Submit.
Result: Cisco Secure ACS saves and begins enforcing the access policy settings.
Session PolicyThe Session Policy feature controls various aspects of Cisco Secure ACS
administrative sessions. This section contains the following topics:
•Session Policy Options, page 10-13
•Setting Up Session Policy, page10-14
Session Policy Options
You can configure the following options on the Session Policy Setup page:
•Session idle timeout (minutes)—Defines the time in minutes that an
administrative session, local or remote, must remain idle before
Cisco Secure ACS terminates the connection. This parameter applies to the
Cisco Secure ACS administrative session in the browser only. It does not
apply to an administrator’s dial-up session.
An administrator whose administrative session is terminated receives a
dialog box asking whether or not the administrator wants to continue. If the
administrator chooses to continue, Cisco Secure ACS starts a new
administrative session.