GlobalProtect How to renew Pre-Logon's Cookie when it Expired?

Reply
is_trouser
L1 Bithead

GlobalProtect How to renew Pre-Logon's Cookie when it Expired?

I created the Pre-Logon method for outside users, The Pre-Logon user use the Cookie authentication and Any user use the Username and password authentication. I don't want any user can login with Cookie because once the employee leaves the company, the ability to connect to the VPN through cookies(that are still in the life time) will bring security risks.

 

But I found that if the Pre-Logon cookie expired, Pre-Logon will disconnect from then on. I don’t know how to renew the Pre-Logon cookie?

 

I tried to log in to the GP client again but the Pre-Logon still didn’t work.

Can I only delete the cookie file manually? Then restart the login GP client to generate a new cookie?

This is not ideal. Who can give me better attention? 

vathreya
L3 Networker

When a certain employee leaves the company, won't you clean their endpoint and uninstall GlobalProtect, which should remove the cookie file.

 

 

is_trouser
L1 Bithead

Hi, I found the reason. I forgot to set the same cookie lifetime in the Gateway agent configuration. Only set it in Portal.

So when the Portal's Pre-logon cookie expired, re-login GP agent will not renew the cookie untill the Gateway's Pre-logon cookie expired too.

 

I just need to set an appropriate cookie lifetime and wait for the cookie to expire naturally after the employee leaves.

 

Am I right?

Tags (1)
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!