topic Re: Globalprotect pre-logon then MFA using SAML Pre-logon doesn't re-connect when user re-star the computer. in GlobalProtect Discussions

Globalprotect pre-logon then MFA using SAML Pre-logon doesn't re-connect when user re-star the computer.

liaquatkhan — Thu, 04 Mar 2021 15:21:47 GMT

Hi,

I'm hoping to get help from you guy's. My client set up a pre-logon then MFA using SAML. Pre-logon works fine when end user start their computer, however, when they re-start their computer, pre-logon doesn't connect itself, user has to enter their credentials manually.

Please let me know if you need me to upload the gp logs.

Thanks.

Re: Globalprotect pre-logon then MFA using SAML Pre-logon doesn't re-connect when user re-star the computer.

sebastianvd — Fri, 05 Mar 2021 08:41:20 GMT

pre-logon credentials is a cookie set when the users first login.

After that and a reboot the cookie will allow pre-logon authentication.

But when the user logs in the user credentials have to be verified if there is no user-logon cookie set.

So might be an issue with the cookies ?

Authentication with local/ldap/saml doesn't matter, if you configure cookies and a lifetime that will be used until expired.