We are attempting to test global protect with pre-log on in our network and have a number of issues and I was wondering if we might be setting it up incorrectly.
The type of set up we require is with windows machines that log on to global protect when they start up prior to users logging on.
Now there is nothing in the offical admin guide with regards to setting this up and I am relying on information on the web in Palo docs and you tube.
We dont seem to be able to get this working with a single gateway and a you tube video I saw suggests having one gateway for machines and one for users. Would this be a correct way to do this?
When we do it with a single gateway even though the certifcates are in place we get an issue when tryng to connect the global protect client saying 'invalid portal' this is doing the set up as per palo alto docs on their website.
Can anyone advise a correct implementation for this set up?
I know you've already alluded to it, but the KBs really do a very detailed job on describing what to configure and where. I used this guide and it helped me get everything set up I needed:
You can also use these for additional reference:
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!