Changing the validity period of connection sessions and authentication tokens by using a script

In Kaspersky Industrial CyberSecurity for Networks version 4.0.1, you can change the defined validity period for connection sessions with the Server through the web interface and for authentication tokens in the Kaspersky Industrial CyberSecurity for Networks API. The setting that defines the time limit is changed by using the kics4net-params script, which is located on the Server computer in the /opt/kaspersky/kics4net/sbin/ folder.

You can use the kics4net-params script to view the current value of the time period and to define a different value. The value is presented in minutes. You can define a time limit in the range from 1 to 43,200 minutes (600 minutes by default, which equals 10 hours).

To view the current value of the time limit:

  1. On the Server computer, log in to the system using the account credentials of a user account with root privileges that you want to use to run the kics4net-params script.
  2. Go to the /opt/kaspersky/kics4net/sbin/ folder and enter the following command for running the script to view the currently defined value:

    python kics4net-params get -n logon_session_timeout

    where:

    • -n disables display of the internal name used to represent the value in the application configuration. If this parameter is not defined, the value is displayed together with the following name: logon_session_timeout=<value>.
    • logon_session_timeout designates a request for the currently defined value of the validity period (required setting).

To change the time limit value:

  1. On the Server computer, log in to the system using the account credentials of a user account with root privileges that you want to use to run the kics4net-params script.
  2. Go to the /opt/kaspersky/kics4net/sbin/ folder and enter the following command for running the script to change the value:

    python kics4net-params set -r logon_session_timeout=<value>

    where:

    • -r enables automatic restart of application services on the Server computer after the new value for the validity period is applied. If this parameter is not defined, you will have to manually restart the Server computer or restart services after the script is finished.
    • logon_session_timeout=<value> is the new value of the validity period (required setting).
Page top