Pre-logon tunnel rename timeout displays notifications every 10 seconds after the user logs into the endpoint
19065
Created On 07/15/22 17:38 PM - Last Modified 03/09/24 03:25 AM
Symptom
When setting "Pre-logon Tunnel Rename Timeout" to a positive value, the GlobalProtect application prompts a notification every 10 seconds as a countdown notifying the user "You have X seconds remaining to log in and reconnect to Global Protect".
NOTE:
Pre-logon Tunnel Rename Timeout: A value of 1 to 600 indicates the number of seconds in which the pre-logon tunnel can remain active after a user logs on to the endpoint. During this time, GlobalProtect enforces policies on the pre-logon tunnel. If the user authenticates with the GlobalProtect gateway within the timeout period, GlobalProtect reassigns the tunnel to the user. If the user does not authenticate with the GlobalProtect gateway before the timeout, GlobalProtect terminates the pre-logon tunnel.
Environment
- GlobalProtect
- Windows OS
- Pre-logon connect method
- Pre-logon tunnel rename timeout configured with a positive value.
Additional Information
There is no setting to turn this notification off or change the frequency of it. Reach out to the Account Team to vote for feature request FR ID:15610.
You may refer to the below settings which may work in combination:
Why does GlobalProtect logout users connected to the VPN from an RDP station at the time of the RDP connection loss?
The gateway client settings is not properly selected when switching from pre-logon user to the logged on user.