Kill Active VPN Sessions Through TMSH

Question

Software Version 13&nbsp;
Hi,&nbsp;
As part of our working policies, I need to disconnect any VPN sessions used by a certain client group, at the end of each working day.&nbsp;
These clients use a separate access profile, and I'm able to do this by using the GUI, by navigating to Access/Overview/Active Sessions, filtering on profile name, then selecting relevant connections and hitting the "Kill Selected Sessions" button.&nbsp;
But I would like to automate this by running a script that will SSH to the F5 BigIP and run a TMSH command at a specific time. but I can't seem to find the TMSH command that will actually kill the session.
I have tried the following,  
&nbsp;
delete sys connection cs-server-addr ip-address-of-the-vpn-vs  
&nbsp;
but the client disconnects and reconnects immediately, where as when I use the GUI this does not happen.&nbsp;
I have also tried enabling MCP logging to try and capture the command sent but the log just states&nbsp;
 Session deleted due to admin initiated termination .  
&nbsp;
Does anyone know what command is sent to the F5 BigIP by the GUI when the "Kill Selected Session" button is pressed.&nbsp;
Thanks In Anticipation,&nbsp;
Jinks&nbsp;

stanislas_piro2 · Answer

Instead of doing it with tmsh, you can set timeout during policy evaluation with variable assign. Look at this article!&nbsp;

Forum Discussion

Kill Active VPN Sessions Through TMSH

1 Reply

Recent Discussions

F5 Rseries HA

Error when running bigip_command Playbook against LTM : Syntax Error: unexpected argument /bin/sh\n

Can iRule be used to perform exception of IPI category based on Geolocation

Can iRule mask the payload content on event logs of security

minimum tmos software version for connect CIS (openshift)

Related Content

Active/Active load balancing examples with F5 BIG-IP and Azure load balancer

Help with iRule to cut session without activity

Ending an APM session when browser tab is closed

Check active admin user sessions

Agility sessions announced