When connecting to an SSL VPN running 7.0r1 (was 6.5 previously) the user will be able to login properly, but if they logout and then attempt to login once more they will ~sometimes~ fail to receive any roles due to a failure to successfully retrieve AD groups. Has anyone experienced issues with this before?
What does your policy trace show when this happens? Are you doing any other restrictions, such as Host Checker or Cache Cleaner, that would prevent the connection?
Do you use "Virtual ports" or vlan ?