We have let's say 2 roles:
a SSL role with Outlook and a Network Connect Role (using Junos Pulse 2.0)
I want to limit the max session limit for the SSL role to 2 hours and the session limit for the Junos Pulse role to 4 hours.
My problem is that we have clients that are members of both roles.
The session limit that they have in their SSL session is 4 hours... instead of 2 hours.
because they are member of the 2 roles and Juniper takes the maximum limit tiem in the 2 roles.
How can I set he session limit time for the SSL role to 2 hours?
I did the configuration directly in the roles not in the default configurations
You will need to assign only one role or provide the Pulse access for only 2 hours. As you mentioned, the longest timeout is applied for users when multiple roles are assigned.