Menu

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

Your session has expired immediately on login

blanningblanning Newbie ✭
in SSL VPN

I have a TZ270 on latest firmware that has a basic config. Despite comparing to several others without this problem and not seeing any differences I get the following error when logging into the SSLVPN - "Your session has expired. Please log-in again to continue." Needless to say logging in again does not resolve this. Neither does a reboot. I have fiddled with dozens of settings and cannot get this to stop. Has anyone else seen this kind of behavior?

FPSCNY SSLVPN Error.PNG


Category: SSL VPN
Reply

Best Answer

  • CORRECT ANSWER
    prestonpreston All-Knowing Sage ✭✭✭✭
    Answer ✓

    Hi @blanning, no problem, glad to help, make sure you click on the Helpful and Like option on my reply and then others will come across it more easily.

Answers

  • prestonpreston All-Knowing Sage ✭✭✭✭

    Hi @blanning , this will happen if the User logging in to the SSL VPN portal is also added to the SonicWall Administrators Group, you can login using NetExtender but via the Virtual Office page it will log you straight back out again.

    If you are wanting to set up the ToTp then take the user out of the SonicWall Administrators group first, login , scan the QR code, login then logout, then you can re-assign the user to the Administrator group.

  • blanningblanning Newbie ✭

    @preston, you are the best! I have googled and tinkered on this for a week or so now as I have had time and was beginning to fear that I had overlooked something significant. Sadly the error that is thrown and the associated logs give no indication that this is what is happening. Thanks a ton and hopefully others who have this issue find this answer here.

  • Dave_SmithDave_Smith Newbie ✭

    I have a similar issue, but the offered solution does not fit my experience. My admin account for the SonicWALL NSa2700 is local to the firewall. My DC account was first to be added. First time, unsuccessful, second time, third… maybe the sixth attempt it allowed me to complete 2FA registration. My second and third user completed 2FA binding no problem. My fourth user completed after second attempt. My fifth user would not after 5 or 6 attempts, at which point I stopped, to find a cause and workaround/ fix.

    Theory: Prior to enabling 2FA, users are part of group on DC that grants VPN access. To onboard accounts to 2FA, I remove them from the basic VPN group and add them to the new group that requires 2FA, as configured on the SonicWALL. The issue is, the SonicWALL is not acknowledging the user's changed group as quickly as it could, error message given not properly descriptive of real issue.

    Theory 2 there is a very short timeout set and I haven't found how to change it.

    I have a few dozen users to work through. To be able to onboard each user efficiently, would be nice to find a cause, and workaround or fix for this issue.

Sign In or Register to comment.