Mobile VPN with SSL - SAML login - automatically reconnect can't be enabled

Alan_MercerAlan_Mercer
in Firebox - VPN Mobile User

Has any found a way to get the WatchGuard Mobile VPN client with SSL version 12.11.x to automatically attempt to reconnect if SAML authentication is in use? Currently the check box for automatically reconnect is cleared and greyed out when SAML is checked. If not, does anyone know if there is a Feature Request on file with WatchGuard for this?

Comments

  • james.carsonjames.carson Moderator, WatchGuard Representative

    Hi @Alan_Mercer

    Generally, the client will need to go through the SAML authentication process again, as their token will have expired by the time a reconnect is needed. For something like this to work, you'd need to change the IDP's assertion time to the length of time you want the client to be able to reconnect. From a security standpoint, doing this is a bad idea (and the IDP may not even allow it to be set that long.)

    The SSLVPN client's Auto-reconnect box is intentionally grayed out to indicate that it isn't available in this situation.

    -James Carson
    WatchGuard Customer Support

Sign In to comment.