Idle timeout
To ensure security, the idle timeout period should be short. By default, administrative sessions are disconnected if no activity takes place for 900 seconds (15 minutes). This idle timeout is recommended to prevent anyone from using the GUI on a PC that was logged in to the GUI and then left unattended.
There are multiple idle timeout settings, which allows you to control idle timeout for API, GUI, and SSO sessions individually. The Idle Timeout setting controls all other idle timeout, including the idle timeout for SSH and console.
The idle timeout for SSO can only be set in the CLI using the following command: config system admin setting set idle_timeout_sso <integer> end For more information, see the FortiAnalyzer CLI Reference in the Fortinet Document Library. |
To change the idle timeout:
-
Go to System Settings > Admin > Admin Settings.
-
In the Idle Timeout field, enter the idle timeout in seconds (60 - 28800, default = 900).
-
In the Idle Timeout (API) field, enter the idle timeout for API sessions in seconds (1 - 28800, default = 900).
-
In the Idle Timeout (GUI) field, enter the idle timeout in seconds (60 - 28800, default = 900).
-
Click Apply.
If you need to set the idle timeout for SSO sessions, you must use the FortiAnalyzer CLI.