OpenVPN Access Server implements session-token-based authentication. After a normal successful authentication, the server sends a session token to the VPN client. Each time the VPN client must authenticate again, it offers this session token to the server. If the session token passes validation checks on the server side, the client is allowed to resume the VPN session.
For more details on Tunnel Session Management, see the sub-topics below:
- Session tokens in Access Server
- Validation of session tokens
- Session lifetime and expiration settings
- Automatic client inactivity disconnect threshold