the login page is only storing the userLevel in a session variable. It needs to store the VisitorID as well.
double click the Security Assist Authenticate User server behavior, On the third step, click the plus button and select the VisitorID column to have the VisitorID stored in a session variable, then click OK.