session-resumption

Enables session resumption or fast re-authentication by using cached attributes. This feature controls the volume and duration cached data is maintained by the server policy, upon termination of a server policy session. The availability and quick retrieval of the cached data speeds up session resumption.

This feature is disabled by default.

Supported in the following platforms:

  • Access Points — AP505i, AP510i/e, AP560i/h
  • Service Platforms — NX5500, NX7500, NX9500, NX9600, VX9000

Syntax

session-resumption {lifetime|max-entries}
session-resumption {lifetime <1-24> {max-entries <10-1024>}|max-entries <10-1024>}

Parameters

session-resumption {lifetime <1-24> {max-entries <10-1024>}|max-entries <10-1024>}
lifetime <1-24> {max-entries <10-1024>} Optional. Sets the lifetime of cached entries
  • <1-24> – Specify the lifetime period from 1 - 24 hours (default is 1 hour)
    • max-entries – Optional. Configures the maximum number of entries in the cache
      • <10-1024> – Sets the maximum number of entries in the cache from 10 - 1024 (default is 128 entries)
max-entries <10-1024> Optional. Configures the maximum number of entries in the cache
  • <10-1024> – Sets the maximum number of entries in the cache from 10 - 1024 (default is 128 entries)

Examples

nx9500-6C8809(config-radius-server-policy-test)#session-resumption lifetime 10 max-entries 11
nx9500-6C8809(config-radius-server-policy-test)#show context
radius-server-policy test
 proxy retry-delay 8
 proxy retry-count 4
 proxy realm test1 server 172.16.10.7 port 1025 secret 0 test1123
 ldap-server primary host 172.16.10.19 port 162 login "test" bind-dn "bind-dn1" base-dn "bas-dn1" passwd 0 test@123 passwd-attr test123 group-attr group1 group-filter "groupfilter1" group-membership groupmembership1 net-timeout 2
 session-resumption lifetime 10 max-entries 11
nx9500-6C8809(config-radius-server-policy-test)#

Related Commands

no Disables session resumption on this RADIUS server policy