https://live.paloaltonetworks.com/t5/general-topics/session-timeout-issue-tunnel-active-but-user-id-authentication/m-p/332513#M84060 <P>Dear Team,</P><P>&nbsp;</P><P>We are facing an issue in VPN where in Authentication of users is removed frequently at a random time.</P><P>&nbsp;</P><P>IMPACT :</P><P>&nbsp;</P><P>We have created Source User base policy - Hence once a user session is timed out, browsing of the user is impacted. User needs to relogin and then can access Internet Traffic. However Tunnel is always active and only "User Authentication" gets removed.</P><P>&nbsp;</P><P>1) Browsing error - When the auth of the user is removed, user web browsing traffic gets blocked.</P><P>2) Session Browser - We Seen Traffic Details</P><P>3) System Logs - we got session timeout notification</P><P>4) Traffic Logs - Showing traffic hitting deny rule.</P><P>5) URL Logs - Showing Source Users mapped to ip gets removed (Zoom Webex is ip base policy and hence traffic gets routed through that Security Policy)</P><P>&nbsp;</P><P>PAN&nbsp; OS Version : 9.0.7</P><P>&nbsp;</P><P>Please help to resolve the issue ASAP</P><P>&nbsp;</P><P>Regards</P><P>Karthikeyan Balamurugan</P> Tue, 09 Jun 2020 09:02:25 GMT karthikeyanB 2020-06-09T09:02:25Z https://live.paloaltonetworks.com/t5/general-topics/session-timeout-issue-tunnel-active-but-user-id-authentication/m-p/332513#M84060 <P>Dear Team,</P><P>&nbsp;</P><P>We are facing an issue in VPN where in Authentication of users is removed frequently at a random time.</P><P>&nbsp;</P><P>IMPACT :</P><P>&nbsp;</P><P>We have created Source User base policy - Hence once a user session is timed out, browsing of the user is impacted. User needs to relogin and then can access Internet Traffic. However Tunnel is always active and only "User Authentication" gets removed.</P><P>&nbsp;</P><P>1) Browsing error - When the auth of the user is removed, user web browsing traffic gets blocked.</P><P>2) Session Browser - We Seen Traffic Details</P><P>3) System Logs - we got session timeout notification</P><P>4) Traffic Logs - Showing traffic hitting deny rule.</P><P>5) URL Logs - Showing Source Users mapped to ip gets removed (Zoom Webex is ip base policy and hence traffic gets routed through that Security Policy)</P><P>&nbsp;</P><P>PAN&nbsp; OS Version : 9.0.7</P><P>&nbsp;</P><P>Please help to resolve the issue ASAP</P><P>&nbsp;</P><P>Regards</P><P>Karthikeyan Balamurugan</P> Tue, 09 Jun 2020 09:02:25 GMT https://live.paloaltonetworks.com/t5/general-topics/session-timeout-issue-tunnel-active-but-user-id-authentication/m-p/332513#M84060 karthikeyanB 2020-06-09T09:02:25Z https://live.paloaltonetworks.com/t5/general-topics/session-timeout-issue-tunnel-active-but-user-id-authentication/m-p/332759#M84104 <P>did you exclude the GP ip-pool from the user-id agent?</P> Wed, 10 Jun 2020 09:54:14 GMT https://live.paloaltonetworks.com/t5/general-topics/session-timeout-issue-tunnel-active-but-user-id-authentication/m-p/332759#M84104 reaper 2020-06-10T09:54:14Z https://live.paloaltonetworks.com/t5/general-topics/session-timeout-issue-tunnel-active-but-user-id-authentication/m-p/332922#M84133 <P>No we are not ignoring any ids. It happens at a time random time. Session gets end / terminated abruptly</P> Thu, 11 Jun 2020 10:04:19 GMT https://live.paloaltonetworks.com/t5/general-topics/session-timeout-issue-tunnel-active-but-user-id-authentication/m-p/332922#M84133 karthikeyanB 2020-06-11T10:04:19Z