Clientless app Global Protect - Can I do SSO for apps such as outlook or other SAML apps?

Hi,

Can I do SSO for apps such as outlook or other SAML apps on GP Clientless VPN?

Thanks

SSL Decryption quits working.

We have SSL Decryption setup and seems to work for awhile and then quits.  I cannot say for sure but it seems to be USER-ID related.  Out IT department logs in locally onto their laptops.  They might occasionally map a network drive or launch a progr

High Sierra and GP 4.0.5

When installing GlobalProject on High Sierra we can connect to our site and install the software.  When we enter the portal and connect we just see a spinning disc.  It never connects, never asks for credentials.  This only happens on High Sierra.  

ping speed

Is it possible that, delay and the inconstancy of ping speed is due to the low priority of ping compared to other packages?

How ARP request initiated from Palo Alto sub interface

I am having some issues new ISP. I have assigned my sub interface with /29 range of IP given by my ISP.

I have added staic route towards gateway of ISP with exit interface( sub interface) specified in Palo Alto Virtual router.

Can some tell who will in

Unable to connect to TAXII server when message bindings 1.1 and 1.0 are present

Hi to all,

i've been trying to set up a TAXII client (miner node) in Minemeld but i'm having the same error of #221(that has not solutions):

"nodename" - "collectionname" collection does not support TAXII 1.1 message binding (DATA_FEED).

Through the di

How PA transceiver warranty?

Hi All,

I have a question about paloaltonetworks transceiver warranty.

If I order some transceivers e.g.  PAN-SFP-PLUS-LR or PAN-SFP-PLUS-SR from paloaltonetworks , how the warranty about those transceivers? The same warranty  with hardware FW platfo

Service Routes Don't Work W/O MGMT Connected

I have hundreds of PA 220's on 8.1.0 that are unable to download updates.  The services routes are all configured to use a loopback and its IP which routes fine, and can ping whatever is necessary, the management interface is disconnected at all thes

SSL Decryption inbound and OCSP stapling

Hi

Seems like inbound SSL Decrypt doesn't handle OCSP stapling  ..... Not sure why PA have missed out on this.

Raised it with my SE... not happy with my SE not feeling the love.

Any one else been caught by this

EDIT - adding stapling, must stay away

SSL inbound inspection wildcard certificate

Trying to configure ssl inbound inspection for one of my web sites hosted internally. The IIS server has many sites being served thru host headers. All of the SSL bound sites use the same wildcard certificate *.external-domain-name on this server. I