Users and Access

Updated: April 24, 2026

Outlines user and access management capabilities, including user group administration, account lockout settings, session configuration, and Ciscotac user access, enabling secure authentication, authorization, and control within network environments.

This table describes the developments of this feature, by release.

Table 1. Feature history
Feature name	Release Information	Description
Inactivity lockout	Cisco Catalyst SD-WAN Manager Release 20.12.1	This feature lets you configure Cisco SD-WAN Manager to lock out users who have not logged in for a designated number of consecutive days.
Unsuccessful login attempts lockout	Cisco Catalyst SD-WAN Manager Release 20.12.1	This feature lets you configure Cisco SD-WAN Manager to lock out users who have made a designated number of consecutive unsuccessful login attempts within a designated period.
Configure Sessions in Cisco SD-WAN Manager	Cisco IOS XE Catalyst SD-WAN Release 17.13.1a Cisco vManage Release 20.3.1	This feature lets you see all the HTTP sessions that are open within Cisco SD-WAN Manager. It gives you details about the username, source IP address, domain of the user, and other information. A user with User Management Write access, or a netadmin user can trigger a log out of any suspicious user's session.

Users and access

Details user access fundamentals, explaining user account and group concepts, managing user group permissions, performing user configuration via CLI, setting admin passwords, and administering user groups, including creation, editing, and deletion.

Account lockout

Explains account lockout mechanisms, outlining login options, procedures for configuring account lockout policies, and steps for enforcing lockout after unsuccessful login attempts to enhance security.

User sessions

Describes user session management, highlighting session configuration concepts, restrictions, client and server session timeout settings in SD-WAN Manager, session lifetime configuration, and enabling maximum session limits per user.

Ciscotac user access

Introduces Ciscotac user access, covering key concepts and specific limitations to guide secure and effective use within the network environment.

Need help?

Open a support case

(Requires a Cisco Service Contract)

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.