Pritunl Documentation

Welcome to the Pritunl developer hub. You'll find comprehensive guides and documentation to help you start working with Pritunl as quickly as possible, as well as support if you get stuck. Let's jump right in!

Get Started    

Two-Step Authentication Cache

Client two-step authentication cache

Two cache modes are supported, the OpenVPN cache and Pritunl Client cache. The OpenVPN mode will cache secondary authentication on all OpenVPN clients including the Pritunl Client. This allows clients to reconnect to the server without two-step authentication when a connection is lost. The cache uses several variables to determine the client is the same. These include the clients public IP address, MAC address, random device ID, random device name and the two-factor passcode.

The Pritunl Client mode is a two day authentication cache that only supports the Pritunl Client. This uses an in memory only authentication token that is stored in the client background service process. This allows reconnecting without secondary authentication for two days.

Disable Ccache

The commands below will disable all authentication cache.

pritunl set app.sso_cache false
pritunl set app.sso_client_cache false


The timeout for the two-step authentication can be set in seconds using the commands below.

pritunl set app.sso_cache_timeout 28800
pritunl set app.sso_client_cache_timeout 172800

Updated 2 years ago

Two-Step Authentication Cache

Client two-step authentication cache

Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.