My customer asked me for possibility to limit maximum validity of guest access. They have lots of users who can create guest pass, and their security manager demands issuing guest pass for no more then two days for most of them.
I therefore propose one of this options:
- a way to limit the maximum time the user can specify, when creating guest pass (by group of users from AD)
- a way to automatically (scheduler) delete all generated guest pass at specific time, or way to do it from the CLI or via SNMP.