Hey what field is changed and what is it changed to? I see multiple timeout settings.
Portal Connection Timeout (sec)
TCP Connection Timeout (sec)
TCP Recieve Timeout (Sec)
Any on those?
PAN told me PAN-227368.
Its under the “addressed” issues
Correct. They have to do it on the firewall.
I hear ya, godspeed.
Thanks for your prompt reply, I am just trying to understand the scenario that this issue happens. The reason I mentioned clientless VPN is because it was mentioned in the Bug Detail, I got from Paloalto , and also this "The issue appears to be when the SAML redirects client back to portal address to complete login " which made thinking you were either using captive portal or clientless vpn.
Do Mind letting me know in which scenario you faced this issue? I’m trying to understand if our environment is prone to be affected by this bug before we upgrade. Much appreciated.
TCP connection Timeout (sec) changed it to 60
You’re a star! Ta very much
So, we use GP client and SAML is done within a pop-out browser window. When SAML login in completed the browser redirects to portal we get timeouts in the browser.
Hope this makes sense.
I have already set it to 60, still having issues, thanks anyway 
No problem. Glad to help. I’ve been working for weeks with support and finally got the answer yesterday.
Thanks a lot for your reply , yes it makes sense
I tried to find this bug id but was unsuccessful, does anyone have more information on this
They don’t have it posted yet. They told me “GlobalProtect client cannot connect to portal or gateway if authentication takes longer than 20 seconds.” “The issue is about our internal timer mismatching on the firewall.”
This resolved my issue as well. Thanks a lot!