07-05-2017 09:14 AM
We have Global Protect set up to use user-logon and use user certificastes issued by our PKI to authenticate users. When a user logs in while connected to an external network, it connects just fine. But when a user logs into windows while connected to our internal network, the panel launches showing a status of not connected. This is very confusing to our users because they don't understand that the reason they aren't connected to the VPN is because they don't need to be, they think something is wrong. Is there a way to supress this kind of action when the machine is on our internal network?
07-05-2017 09:37 AM
Would it be possible for you to just configure an internal gateway so that you would technically 'connect' and you wouldn't have the 'not connected' message. I'm not aware of a way to supress the panel unless you hide it across the board, and I'm guessing that you want it displayed when users are off of your internal network so they know that they are actually connected?
07-05-2017 09:47 AM
I can look into that. I'm just concerned about creating unnecessary extra traffic on our network. We use our PA820 as a perimeter device, I don't want to impact performance by sending all internal traffic through it aas well.
07-05-2017 10:02 AM
Depending on how you configure it you wouldn't need to; it would make the initial connection but your internal traffic would still process how it normally would.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
