How to troubleshoot Azure VPN client's frequent disconnections

Question

How to troubleshoot Azure VPN client's frequent disconnections

Alex Alborzfard 1

Several users are claiming that VPN is signing out/disconnecting much more often than usual. I am getting reports that it is signing out at random while they are working (Not just while it is in sleep mode).

Any ideas what could be causing this sudden change? Was something changed on the backend in Azure to cause this?

Sai Prasanna Sinde 6,645 Reputation points Microsoft External Staff Moderator

2024-10-28T00:57:27.8+00:00

Hi @Alex Alborzfard,

Hope you are having a great day!

Thanks for upvoting the answer.

If the above response helps answer your question, please remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution.

Your contribution is highly appreciated.

Regards,

Sai Prasanna.
Sai Prasanna Sinde 6,645 Reputation points Microsoft External Staff Moderator

2024-10-29T01:44:32.6166667+00:00

Hi @Alex Alborzfard,

Greetings!

Thanks for upvoting the answer.

If the above response helps answer your question, please remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution.

Your contribution is highly appreciated.

Regards,

Sai Prasanna.

1 answer

Your answer

Sai Prasanna Sinde 6,645 Reputation points Microsoft External Staff Moderator

2024-10-28T00:57:27.8+00:00

Hi @Alex Alborzfard,

Hope you are having a great day!

Thanks for upvoting the answer.

If the above response helps answer your question, please remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution.

Your contribution is highly appreciated.

Regards,

Sai Prasanna.
Sai Prasanna Sinde 6,645 Reputation points Microsoft External Staff Moderator

2024-10-29T01:44:32.6166667+00:00

Hi @Alex Alborzfard,

Greetings!

Thanks for upvoting the answer.

If the above response helps answer your question, please remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution.

Your contribution is highly appreciated.

Regards,

Sai Prasanna.

Answer 1

Hi @Alex Alborzfard

Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.

Looks like the updated version (3.4.0.0) might be the reason for this issue. Please refer: https://learn.microsoft.com/en-us/azure/vpn-gateway/azure-vpn-client-versions#azure-vpn-client---windows
The reason might be the current refresh token in the Azure VPN client, acquired from Entra ID, has expired or become invalid. This token is renewed approximately every hour. Entra tenant administrators can extend the sign-in frequency by adding conditional access policies. Please work with your Entra tenant administrators to extend the refresh token expiration interval. For your reference: https://learn.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-vpn-faq#vpn-disconnect
If you are getting any of the below error, you need to reconnect. This triggers an interactive sign-in process in Microsoft Entra that issues a new refresh token and access token. Your authentication with Microsoft Entra is expired. You need to re-authenticate in Entra to acquire a new token. Authentication timeout can be tuned by your administrator. or Your authentication with Microsoft Entra has expired so you need to re-authenticate to acquire a new token. Please try connecting again. Authentication policies and timeout are configured by your administrator in Entra tenant. For your reference: https://learn.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-troubleshoot-vpn-point-to-site-connection-problems#cause-15
The refresh token can show as expired/invalid due to several reasons. You can check User Entra sign-in logs for debugging. For your reference: https://learn.microsoft.com/en-us/entra/identity/monitoring-health/concept-sign-ins
Refresh tokens can be revoked at any time, because of timeouts and revocations. Your app must handle revocations by the sign-in service gracefully by sending the user to an interactive sign-in prompt to sign in again. For your reference: https://learn.microsoft.com/en-us/entra/identity-platform/refresh-tokens#token-expiration

If you have any further queries, do let us know. If the answer is helpful, please click "Accept Answer" and "Upvote it."

Thanks,

Sai Prasanna.

Sai Prasanna Sinde 6,645 Reputation points Microsoft External Staff Moderator

2024-10-24T07:45:24.94+00:00

Hi @Alex Alborzfard,

I hope you are having a fantastic day!

I wanted to follow up with you to see if the last response answered all of your questions.

If so, I would appreciate it if you could accept the response as a "Accept Answer" and "Upvote it" so that it can help other members of the community who may be experiencing similar challenges.

I value your time and look forward to hearing from you on this.

With regards,

Sai Prasanna.
Sai Prasanna Sinde 6,645 Reputation points Microsoft External Staff Moderator

2024-10-25T01:36:59.2433333+00:00

Hi @Alex Alborzfard,

Greetings!

Thanks for upvoting the answer.

If the above response helps answer your question, please remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution.

Your contribution is highly appreciated.

Regards,

Sai Prasanna.
Sai Prasanna Sinde 6,645 Reputation points Microsoft External Staff Moderator

2024-11-05T05:03:00.5266667+00:00

Hi @Alex Alborzfard,

Greetings!

Thanks for upvoting the answer.

If the above response helps answer your question, please remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution.

Your contribution is highly appreciated.

Regards,

Sai Prasanna.

Share via

How to troubleshoot Azure VPN client's frequent disconnections

1 answer

Your answer