The information you are about to copy is INTERNAL!
DO NOT share it with anyone outside Check Point.
User is sometimes asked to re-authenticate when accessing web application in Mobile Access Portal
Mobile Access / SSL VPN
R77 (EOL), R77.10 (EOL), R77.20, R77.30 (EOL)
Gaia, SecurePlatform 2.6, Crossbeam XOS
Platform / Model
User is sometimes asked to re-authenticate when accessing web application in Mobile Access Portal.
Comparing traffic captures when Mobile Access blade is enabled and disabled shows that one of the cookies being passed via LAN is not being passed when Mobile Access blade is enabled.
httpd.log file shows:
[APACHE] [CVPN_INFO] Cvpn::WebHandler::filterCookiesByPath: Current cookie name is (<cookie>), path is (/).
But this line does not appear right after it:
[APACHE] [CVPN_INFO] Cvpn::WebHandler::filterCookiesByPath: this cookie should be used for this request.
When searching for the cookie in httpd.log file, the cookie has trailing whitespaces.
The cookie is not forwarded to the internal server because of mismatch, as a result of trailing whitespace in the cookie.