That’s a renegotiation of the encryption keys that by default happens every hour. It should establish automatically a new encryption in the tunnel, but sometimes if the server is asking for a user input like password or OTP the connection drops if unattented. reneg-sec 0 in the server configuration should disable this attempt to renegotiate the keys.
But bear in mind that if you decide to do this then the TLS keys will not be re-negotiated ever, while the tunnel stays open and that has a security downside.
happy for you but keep in mind that this is a work around, not a real solution. Your client should not be needed to re-enter the credentials. The keys renegotiation should happen seamlessly.