APM with External IDP (SAML) unexpected disconnection
Hi,
As a lot of people right now, we are deploying VPN profiles in emergency.
For a specific scenario, we use an External IDP (SAML SSO) to connect the users, which works fine.
However, we get disconnected after a few minutes (sometimes seconds).
We did some testing : the issue doesn't seems to happens when we switch to RADIUS or local auth, and SEEMS to be linked with the Maximum Sessions per user parameter.
We had this parameter configured to 1 session max per user, and we were disconnected a LOT, even if only one session was running.
We switched the parameter to 2, which kind of improved the situation but we were still disconnected time to time.
When the parameter was configured on 2, and only my test laptop was connected (I verified in the logs, only one session existed at this time), I tried to launch F5 Access from my smartphone, which should have been OK since we allow 2 sessions per user. However, my laptop was directly disconnected.
Now, we disabled the Max session per user and everything is working great.
Any idea what could have happened?
Why would it only happened with the SAML auth (External IDP) and not with RADIUS or local auth?
Thank you in advance