I have upgraded my passive palo alto firewall to 7.1.20 post which global protect portal is not working.
I'm seeing SSL session cache request comming in from external source. But the webpage page cannot load after adding the exception.
Same works good in primary firewall 7.0.9
7.0.9 to 7.1.0 to 7.1.20 is the upgrade path that I went.
Whenever I load portal it is requesting me to add exception for the firstime then the pages goes can't display webpage.
What could cause this issue
Potentially wording is just off here, but if you are trying to access a passive firewall with Globalprotect I wouldn't expect any sort of response, the firewall will simply drop the connection.
That really doesn't look like it's your issue, not with the issue that you're seeing. Try import the cert you're using for the portal as a trusted certificate on one of the machines, this should clear the security warning. Does that allow this machine to connect or not?
At that point I would recommend that you open a TAC ticket so that they can take a look at it with you. At this point it could be a number of different issues that are a bit more commplicated without seeing exactly how your configuration is setup.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!