Known Issues

Problem Report Number	Release Note
Release 22.8.6
1725643	Symptom: Once the option "Don't Ask again" when asked to save credentials is selected, enabling Biometric authentication from Ivanti Secure Access Client Settings does not help in getting the Save Credential option again. Workaround: Delete VPN profile or enable and then disable Biometric Authentication from Menu > Settings of the Ivanti Secure Access Client.
1728803	Symptom: VPN auto reconnection is not working after rebooting the device with Ivanti Secure Access Client Android when Knox Service Plugin is used to push VPN connection profile. Workaround: None
1728856	Symptom: Notification is not showing after enrollment with Samsung Knox Manage MDM for Ivanti Secure Access Client to connect or provide access to Credentials storage when Knox Service Plugin is used to push VPN profile. Workaround: Force stop Ivanti Secure Access Client Android application to receive the notification.
1730809	Symptom: Unable to reach Ivanti Connect Secure Server and connect VPN if Ivanti Secure Access Client is upgraded when VPN is active. Workaround: Reboot the Android device where issue is observed or reinstall the Ivanti Secure Access Client or disconnect VPN before upgrade.
Release 22.8.5
1701456	Symptom:Single logout is not working when SAML is used as Secondary auth with Cert auth. Workaround: None
Release 22.8.3
No known issues for this release.
Release 22.8.2
1548608	When TLS 1.3 is enabled, password authentication along with Certificate restriction is not working. Workaround: Disable TLS1.3 on the server so that the authentication policy falls back to TLS 1.2 during the negotiations.
Release 22.8.1
1495667	When VPN connection is added through browser launch method, user prompt displays to choose the certificate when authentication method is Certificate. Workaround: Map the certificate while adding connection or choose the certificate when prompted.
1495349	When Single Logout is disabled and Conditional access is configured, the VPN session is not getting connected automatically on first attempt after disconnecting SAML based connection. Workaround: Close and re-open Ivanti Secure Access Client and try to re-connect.
Release 22.7.5
No known issues for this release.
Release 22.7.4
1380894	ISAC UI freezes while switching connection between ZTA and Classic VPN and during ZTA disconnection. Workaround: Close and re-open Ivanti Secure Access Client.
Release 22.7.3
No known issues for this release.
Release 22.7.2
No known issues for this release.
Release 22.7.1
PAND-6727	Per-app VPN on-demand works similar to per-app Always-On VPN. Workaround: None.
PAND-6736	Frequent ESP rekeying is observed even when the key lifetime is set high in NCP based servers. Workaround: None.
Release 22.6.2
No known issues for this release.
Release 22.6.1
PAND-6583	ESP rekeying is not working and connection falls back to SSL after key lifetime out. Workaround: None.
PRS-417975	Andriod ISAC client crashes on Google Pixel 8 and Google Pixel 8 Pro devices. Workaround: None.
Release 22.5.1
PAND-6440	No Resources are accessible when Enable TOS Bits Copy is configured for the role under VPN Tunneling Options. Workaround: Disable the option Enable TOS Bits Copy on the ICS .
PAND-6393	App gets stuck on restoring session when VPN Tunnelling is not enabled for the role. Workaround: Enable VPN Tunnelling at User Role.
Release 22.4.1
PAND-6284	"You are not allowed to sign in" error displays before Host Checker evaluation when host checker policy is configured at role level. Workaround: Click Sign in button to proceed.
Release 22.3.1
No VPN known issues for this release.
Release 22.2.1
PAND-5773	Application crashes while enrolling to ZTA connection on fresh client installation. Workaround: Relaunch the client, open the newly added ZTA profile, and click connect to continue enrolment.
PAND-5638	Application crashes when a user adds or connects to a VPN profile on fresh client installation. Workaround: Relaunch the client.
PAND-5612	Unable to establish user session with Ivanti Connect Secure when only bookmarks are configured and VPN is disabled. Workaround: Enable VPN Tunneling on Ivanti Connect Secure.
PAND-5631	Soft token is getting unselected if selected after import. Workaround: Re-select soft token and save the profile.
PAND-5545	Empty Home is observed in Classic UI. Workaround: Force stop the application and restart.
PAND-5543	Disconnect failure observed after disconnection of nZTA connection. Workaround: None.
PAND-5509	Under rare occasions, application services may restart automatically without interruptions to data traffic. Workaround: None.

Release 22.8.6

1725643

Symptom: Once the option "Don't Ask again" when asked to save credentials is selected, enabling Biometric authentication from Ivanti Secure Access Client Settings does not help in getting the Save Credential option again.

Workaround: Delete VPN profile or enable and then disable Biometric Authentication from Menu > Settings of the Ivanti Secure Access Client.

1728803

Symptom: VPN auto reconnection is not working after rebooting the device with Ivanti Secure Access Client Android when Knox Service Plugin is used to push VPN connection profile.

Workaround: None

1728856

Symptom: Notification is not showing after enrollment with Samsung Knox Manage MDM for Ivanti Secure Access Client to connect or provide access to Credentials storage when Knox Service Plugin is used to push VPN profile.

Workaround: Force stop Ivanti Secure Access Client Android application to receive the notification.

1730809

Symptom: Unable to reach Ivanti Connect Secure Server and connect VPN if Ivanti Secure Access Client is upgraded when VPN is active.

Workaround: Reboot the Android device where issue is observed or reinstall the Ivanti Secure Access Client or disconnect VPN before upgrade.

Release 22.8.5

1701456

Symptom:Single logout is not working when SAML is used as Secondary auth with Cert auth.
Workaround: None

Release 22.8.3

No known issues for this release.

Release 22.8.2

1548608

When TLS 1.3 is enabled, password authentication along with Certificate restriction is not working.

Workaround: Disable TLS1.3 on the server so that the authentication policy falls back to TLS 1.2 during the negotiations.

Release 22.8.1

1495667

When VPN connection is added through browser launch method, user prompt displays to choose the certificate when authentication method is Certificate.

Workaround: Map the certificate while adding connection or choose the certificate when prompted.

1495349

When Single Logout is disabled and Conditional access is configured, the VPN session is not getting connected automatically on first attempt after disconnecting SAML based connection.

Workaround: Close and re-open Ivanti Secure Access Client and try to re-connect.

Release 22.7.5

No known issues for this release.

Release 22.7.4

1380894

ISAC UI freezes while switching connection between ZTA and Classic VPN and during ZTA disconnection.

Workaround: Close and re-open Ivanti Secure Access Client.

Release 22.7.3

No known issues for this release.

Release 22.7.2

No known issues for this release.

Release 22.7.1

PAND-6727

Per-app VPN on-demand works similar to per-app Always-On VPN.

Workaround: None.

PAND-6736

Frequent ESP rekeying is observed even when the key lifetime is set high in NCP based servers.

Workaround: None.

Release 22.6.2

No known issues for this release.

Release 22.6.1

PAND-6583

ESP rekeying is not working and connection falls back to SSL after key lifetime out.

Workaround: None.

PRS-417975

Andriod ISAC client crashes on Google Pixel 8 and Google Pixel 8 Pro devices.

Workaround: None.

Release 22.5.1

PAND-6440

No Resources are accessible when Enable TOS Bits Copy is configured for the role under VPN Tunneling Options.

Workaround: Disable the option Enable TOS Bits Copy on the ICS .

PAND-6393

App gets stuck on restoring session when VPN Tunnelling is not enabled for the role.

Workaround: Enable VPN Tunnelling at User Role.

Release 22.4.1

PAND-6284

"You are not allowed to sign in" error displays before Host Checker evaluation when host checker policy is configured at role level.

Workaround: Click Sign in button to proceed.

Release 22.3.1

No VPN known issues for this release.

Release 22.2.1

PAND-5773

Application crashes while enrolling to ZTA connection on fresh client installation.

Workaround: Relaunch the client, open the newly added ZTA profile, and click connect to continue enrolment.

PAND-5638

Application crashes when a user adds or connects to a VPN profile on fresh client installation.

Workaround: Relaunch the client.

PAND-5612

Unable to establish user session with Ivanti Connect Secure when only bookmarks are configured and VPN is disabled.

Workaround: Enable VPN Tunneling on Ivanti Connect Secure.

PAND-5631

Soft token is getting unselected if selected after import.

Workaround: Re-select soft token and save the profile.

PAND-5545

Empty Home is observed in Classic UI.

Workaround: Force stop the application and restart.

PAND-5543

Disconnect failure observed after disconnection of nZTA connection.

Workaround: None.

PAND-5509

Under rare occasions, application services may restart automatically without interruptions to data traffic.

Workaround: None.