VPN session maximum duration - AWS Client VPN

VPN session maximum duration

AWS Client VPN provides several options for the maximum VPN session duration. You can configure a shorter maximum VPN session duration to meet security and compliance requirements. By default, the maximum VPN session duration is 24 hours.

Note

When the maximum VPN session duration value is decreased, active VPN sessions older than the new timeout value will be disconnected.

See Release notes for the AWS provided client in the AWS Client VPN User Guide for details on client desktop applications.

Configure maximum VPN session during creation of a Client VPN endpoint

For detailed steps for configuring maximum VPN session during creation of a Client VPN endpoint, see Create a Client VPN endpoint.

View current maximum VPN session duration

Use the following steps to view current maximum VPN session duration.

View current maximum VPN session duration for a Client VPN endpoint (console)
  1. Open the Amazon VPC console at https://console.aws.amazon.com/vpc/.

  2. In the navigation pane, choose Client VPN Endpoints.

  3. Select the Client VPN endpoint that you want to view.

  4. Verify that the Details tab is selected.

  5. View the current maximum VPN session duration next to Session timeout hours.

View current maximum VPN session duration for a Client VPN endpoint (AWS CLI)

Use the describe-client-vpn-endpoints command.

Modify maximum VPN session duration

Use the following steps to modify an existing maximum VPN session duration.

Modify an existing maximum VPN session duration for a Client VPN endpoint (console)
  1. Open the Amazon VPC console at https://console.aws.amazon.com/vpc/.

  2. In the navigation pane, choose Client VPN endpoints.

  3. Select the Client VPN endpoint that you want to modify, choose Actions, and then choose Modify Client VPN Endpoint.

  4. For Session timeout hours, choose the desired maximum VPN session duration time in hours.

  5. Choose Modify Client VPN endpoint.

Modify an existing maximum VPN session duration for a Client VPN endpoint (AWS CLI)

Use the modify-client-vpn-endpoint command.