Skip to main content
Skip table of contents

Issue with Delay in Jump-server based session

Issue :-  

  • When Jump-server-based sessions are initiated from the endpoint machines, the session gets connected with a 20 – 30-second delay.  

  • This issue occurs when the Jump server is trying to validate the publisher certificate of Sectona.Client.Vault.exe and the Jump server is not connected to the internet, which delays the session connection. 

Resolution :–  

Since, as part of security compliance, internet access on the Jump-server should be disabled. Therefore, to be able to resolve this issue, we need to disable the publisher certificate validation from the internet properties on the Jump server.  

 

image-20240116-074933.png

When a jump-server based session is initiated, PAM creates a dynamic User profile each time on the Jump server which is used for initiation of the thick client on the Jump server. (Note: this account gets removed once the session is disconnected). 

As disabling the certification validation is a user-profile based configuration, this configuration should be done in the Jump server logon policy by adding a logon script so that each time a new user profile is created, the certification validation gets disabled automatically.  

Below are the steps to add the logon script :-

  • Open the Group Policy Editor on the Jump server. 

  • Expand the User Configuration setting. 

  • Expand the Windows Settings option and click on the Scripts (Logon/Logoff) option. 

 

image-20240116-074958.png

 

  • Click on the Add button. 

 

image-20240116-075029.png

  • Browse the script received from the Sectona Team and add it. 

 

image-20240116-075043.png

  • Update the Group Policy using gpupdate /force command in the terminal. 

 

 

 

 

 

 

 

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close