Hello,
We are currently looking at changing our Pritunl VPN servers from certificate-based authentication to Azure Entra SSO authentication.
The configuration works without any issues, and we are able to authenticate successfully to the VPN using SSO.
The problem we are facing is the following: previously, with certificate-based authentication, when we added a route on the server, we need to stop the pritunl server and start it after we added the route, all the clients reconnect automatically on the pritunl server. Even if the server was restarted, adding a route was barely noticeable for users.
Now, with the SSO configuration, if I restart the server using the button in the web interface, I get the following messages on the client side:
- Connection timed out on Pritunl_server_name (username)
- Failed to authenticate to Pritunl_server_name (username)
After that, I am disconnected from my Pritunl client.
I also tested with the ‘Pritunl Authentication Cache’ option enabled, but I observe the same behavior.
After this disconnection, I can reconnect without any issue by simply clicking the Connect button in the Pritunl client.
My question is therefore: is it possible for clients to reconnect automatically when the SSO / Azure Entra authentication is enabled?
Thanks for your time and your work…
Eric