Secure Access Auto Reconnect Behavior During WiFi Network Changes

Available Languages

Download Options

  • PDF     (4.6 KB)
    View with Adobe Reader on a variety of devices
  • ePub     (82.7 KB)
    View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone
  • Mobi (Kindle)     (67.4 KB)
    View on Kindle device or Kindle app on multiple devices
Updated:May 26, 2026
Document ID:225973

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Contents

Issue

When using Cisco Secure Access with a certificate-authenticated VPN profile configured with Always On enabled and TND (Trusted Network Detection) disabled, questions arise regarding the expected behavior of the Auto reconnect feature during WiFi network transitions. Specifically, there is uncertainty about whether VPN reconnection behavior differs as expected when Auto reconnect is enabled versus disabled during WiFi network changes.

Environment

  • Cisco Secure Access

  • Certificate-authenticated VPN profile

  • Always On feature enabled

  • Trusted Network Detection (TND) disabled

  • WiFi network environment with multiple available networks

Resolution

The observed behavior during WiFi network switching with certificate-authenticated VPN profiles is the expected and designed functionality for Secure Access Auto reconnect feature.

Auto Reconnect Enabled Behavior

When Auto reconnect is enabled Auto reconnect ON:

  • The VPN automatically reconnects without user intervention after switching from one WiFi network (wifi1) to another WiFi network (wifi2)

  • No manual user action is required to restore the VPN connection

  • The connection is seamlessly re-established on the new network

Auto Reconnect Disabled Behavior

When Auto reconnect is disabled Auto reconnect OFF:

  • The VPN connection is terminated when switching from one WiFi network (wifi1) to another WiFi network (wifi2)

  • The VPN does not automatically reconnect without user intervention

  • Manual user action is required to re-establish the VPN connection

Configuration Verification

This behavior is consistent with the design specifications for Secure Access when configured with:

  • Always On enabled

  • TND disabled

  • Certificate-based authentication

The Auto reconnect feature functions as intended, providing automatic reconnection capabilities when enabled and requiring manual intervention when disabled during network transitions.

Cause

This is the expected and designed behavior for Secure Access Auto reconnect functionality. The feature is specifically designed to provide different reconnection behaviors based on the Auto reconnect configuration setting to accommodate various deployment scenarios and security requirements.

Related Content

Revision History

Revision Publish Date Comments
1.0
26-May-2026
Initial Release
TAC Authored

Contributed by Cisco Engineers

  • Amit Arora
    Technical Consulting Engineering Technical Leader

Was this Document Helpful?

FeedbackFeedback

Contact Cisco

This Document Applies to These Products