Global Protect MFA login using smtp

K.Mohamed — Fri, 22 May 2026 05:13:13 GMT

Greeting day everyone,, is it possible to enable otp while accessing vpn GP (PA local users) by integrate smtp and getting the otp token

we need to avoid the third-party tools integration also we logging with local users not radius or saml directory

Re: Global Protect MFA login using smtp

kiwi — Fri, 22 May 2026 07:46:40 GMT

Hi @K.Mohamed ,

GlobalProtect supports One-Time Password (OTP) based authentication; however, for remote user authentication to GlobalProtect portals and gateways, the firewall integrates with Multi-Factor Authentication (MFA) vendors using RADIUS or SAML only :

https://docs.paloaltonetworks.com/ngfw/administration/authentication/authentication-types/multi-factor-authentication

This means that a Palo Alto Networks firewall does not natively generate OTPs for its local user database and send them via SMTP without an external authentication service or a third-party MFA solution.

Cheers,

topic Global Protect MFA login using smtp in General Topics

Global Protect MFA login using smtp

Re: Global Protect MFA login using smtp