02-02-2024 01:31 PM
We have our laptops configured for pre-logon with machine certs, and SSO for the user based tunnel. If we RDP to a laptop that is sitting at the logon screen with the machine tunnel up, RDP works fine. However, if we RDP to a laptop that is already signed in with the user tunnel up, then RDP kills the GlobalProtect session and disconnects.
We have the pre-logon tunnel timeout rename set to -1. Is this expected behavior for RDP to kill the user tunnel?
Running 10.1.11h5 and GP 6.1.3.
02-02-2024 04:17 PM - edited 02-02-2024 04:18 PM
there different scenario and different setup from company to other, take a look at: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000kGW6CAM&lang=en_US%E2%80%A...
I think the User Switch Tunnel Rename Timeout (https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-web-interface-help/globalprotect/network-globalp...) is the fix for your problem.
HTH
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
