11-29-2016 09:43 AM
@jdprovine can you expand by what you mean by 'key'?
11-29-2016 11:02 AM
security key like for cisco vpn client. There has to be a way for global protect to secure the connections
11-29-2016 12:16 PM
The first time you put in your password to connect, what keeps that from being clear text how is it encrypted. We have group name and password setup but that is no where on the client software that is installed on the pc
11-29-2016 11:56 PM
I hope its future of Global protect, check this configuration under
Network->Gllbal protect->gateway->selcet gateway->agent->external gateway
check is it manuall or not?
11-30-2016 01:27 AM
GlobalProtect uses certificates to secure the connection, rather than a preshared key 🙂
11-30-2016 06:45 AM
so if you don't put on a cert then your connection is not secure
11-30-2016 06:46 AM
then the device's default certificates will be used 😉
11-30-2016 06:48 AM
you mean the portal configuration not the gateway configuration right?
11-30-2016 06:51 AM
We are using IPSec connections not ssl does that make a difference? My main concern is the first time then connect using the VPN that their password is encrypted and then does it download the key after the first connection
11-30-2016 06:55 AM
there's several bits and pieces to it, please check out this bit in the admin guide
hopefully it helps clarify what you're looking for
11-30-2016 06:59 AM
@jdprovine wrote:
We are using IPSec connections not ssl does that make a difference? My main concern is the first time then connect using the VPN that their password is encrypted and then does it download the key after the first connection
The first time you're going to set up an ssl connection, using the server certificate attached to the portal to get to the config file, all communication will always be encrypted (ssl uses, at the least, a server and client hello where encryption is negotiated and established before any user information is transmitted)
client to server will always be encrypted even before username and password are shared
11-30-2016 07:01 AM
First glance at the document not sure it answers my question but I will give it another look and see. 🙂
11-30-2016 07:14 AM
I can always cound on good information from you reaper 🙂
11-30-2016 07:17 AM
Is there a log or anything where I can get the information you are talking about to show my boss that this is occuring
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
