https://live.paloaltonetworks.com/t5/general-topics/ios-globalprotect-vpn-question/m-p/11657#M8570 <HTML><HEAD></HEAD><BODY><P>if you use group name and group password it will not break your existing Clients.But if you'll use client certificate this will be different.use without client certificate if it is not mandatory for you.you can do that.Look "Pre-Shared Secret Authentication" on the document.</P><P>also global protect application on app store needs a license that is true.</P></BODY></HTML> Wed, 03 Jul 2013 20:17:42 GMT Retired Member 2013-07-03T20:17:42Z https://live.paloaltonetworks.com/t5/general-topics/ios-globalprotect-vpn-question/m-p/11656#M8569 <HTML><HEAD></HEAD><BODY><P>So I'm going through the document here:</P><P><A _jive_internal="true" href="https://live.paloaltonetworks.com/servlet/JiveServlet/downloadBody/2016-102-8-14087/GlobalProtect-Config-Apple-iOS-RevD.pdf" title="https://live.paloaltonetworks.com/servlet/JiveServlet/downloadBody/2016-102-8-14087/GlobalProtect-Config-Apple-iOS-RevD.pdf">https://live.paloaltonetworks.com/servlet/JiveServlet/downloadBody/2016-102-8-14087/GlobalProtect-Config-Apple-iOS-RevD.pdf</A></P><P></P><P>I have an existing / configured GlobalProtect portal for VPN usage for PCs/Macs.&nbsp; It looks like this (portal and gateway settings):</P><P></P><P><IMG alt="http://i.imgur.com/Juwdzxql.png" class="jive-image" src="https://ip1.i.lithium.com/ba879314cf5d494eceedcba1731c59514405aa73/687474703a2f2f692e696d6775722e636f6d2f4a7577647a78716c2e706e67" /><A href="http://imgur.com/Juwdzxq">http://imgur.com/Juwdzxq</A></P><P></P><P><A class="jive-link-external-small" href="http://imgur.com/D9bwEwP]&lt;IMG SRC=http://i.imgur.com/D9bwEwPl.png&gt;[/URL">http://imgur.com/D9bwEwP<IMG alt="http://i.imgur.com/D9bwEwPl.png" class="jive-image" src="https://ip1.i.lithium.com/061d4c087ff043ea191c55a0333055e782cd14b3/687474703a2f2f692e696d6775722e636f6d2f443962774577506c2e706e67" /></A></P><P></P><P>If I enable the X-auth support and everything else needed for iOS to work, is that going to break my existing GP clients (which are NOT doing any sort of certificate-based authentication)?&nbsp; I.e. if I want to do this seamlessly, should I setup a second portal just for iOS?</P><P></P><P>I discovered the iOS GlobalProtect app on the app store, but we don't have a license for GlobalProtect (we were using Netconnect in the past), and apparently the app won't work if I don't buy full-on GlobalProtect licenses?</P></BODY></HTML> Wed, 03 Jul 2013 19:31:19 GMT https://live.paloaltonetworks.com/t5/general-topics/ios-globalprotect-vpn-question/m-p/11656#M8569 bradenmcg 2013-07-03T19:31:19Z https://live.paloaltonetworks.com/t5/general-topics/ios-globalprotect-vpn-question/m-p/11657#M8570 <HTML><HEAD></HEAD><BODY><P>if you use group name and group password it will not break your existing Clients.But if you'll use client certificate this will be different.use without client certificate if it is not mandatory for you.you can do that.Look "Pre-Shared Secret Authentication" on the document.</P><P>also global protect application on app store needs a license that is true.</P></BODY></HTML> Wed, 03 Jul 2013 20:17:42 GMT https://live.paloaltonetworks.com/t5/general-topics/ios-globalprotect-vpn-question/m-p/11657#M8570 Retired Member 2013-07-03T20:17:42Z