Setting Concurrent Session Limits for User Accounts in ICS

To reduce the risk of Denial-of-Service (DoS) attacks or unauthorized account usage, it is crucial to limit the number of concurrent sessions allowed per user account accessing a VPN gateway. This approach ensures tighter access control and aligns with operational requirements.

•Limiting concurrent sessions per user account to one prevents the possibility of resource overutilization or malicious activity that can jeopardize system availability or security.

•This requirement focuses specifically on individual user accounts and does not address concurrent sessions initiated by users using multiple system accounts.

•The maximum allowable concurrent sessions must be tailored to your site’s mission requirements and the operational environment for each VPN gateway, ensuring it is deliberately configured and not left as unlimited.