I have checked older posts concerning radius setup time limit and errors from it but I have not found any reason why is there such “small” range of radius timeout valid values:
[admin@MT1] /radius> set 2 timeout=20s
value of timeout is out of range (00:00:00.010 .. 00:00:10)
[admin@MT1] /radius>
Is it possible to somehow set timeout to more than 10s, like 60-120s
We are using dual authentication and for 10s users need to be really fast with 2nd authentication to make it work.
20s is WAY to long for a AAA response, by that time, your client would long have given up trying to authenticate. You want to handle AAA within 2 or 3 seconds (tops).
And giving the use time to enter a OTP, has nothing to do with the duration of the AAA request. The request is only sent AFTER the user entered the OTP, and the AAA server should still respond, within seconds AFTER the OTP has been entered
