I have an HA pair of XG 370s running 17.5.12.664.
We have an SSL VPN setup, and it's been working just fine. I have recently enabled OTP for a number of users, and for the most part, that too is working fine.
However there are one or two users that have patchy internet or wifi and they occasionally lose connection to the VPN. Before OTP it would just reconnect and they probably wouldn't even notice.
Now that the login password includes the OTP code when the VPN reconnects, the credentials are invalid, and they might not even notice that this has happened until things start to go wrong. The client doesn't pop up a window to say that the connection has been interrupted, and the only way to resolve it is for them to disconnect and reconnect with their password and the new OTP code.
This is obviously getting quite frustrating for the users it's affecting.
I can't really see many options in the firewall for configuring retries (disconnect idle clients is disabled), and there's nothing in the client about it.
Does anyone else suffer from these kinds of issues? How have you worked around them?
This thread was automatically locked due to age.