GlobalProtect Prelogon without initial Internet Connectivity

cancel
Showing results for 
Search instead for 
Did you mean: 

GlobalProtect Prelogon without initial Internet Connectivity

L2 Linker

Hi,

 

Please can someone explain to me how GlobalProtect Prelogon can possibly work without any valid internet connection.

 

For example in a hotel or cafe, you have to be logged into your laptop first to connect to the hotel's wifi portal so how does Prelogon work in this scenario?

9 REPLIES 9

L4 Transporter

Hi Indy,

 

You'll need to connect manually once you regain access. The pre-logon tunnel isn't formed of course but it will still form a tunnel and connect OK. The same as on-demand mode.

 

hope this helps,

Ben

L5 Sessionator

As soon as you boot up your laptop. It will start making a connection to portal/gateway. But in your case initally the laptop doesnot have internet connection so it will not connect it will fail you can connect manually. Once you login into the system provide a vaild wifi password and then reboot upon reboot it will make a connection to portal and gateway. 

kind of defeat the object really of having a prelogon feature.  Usually when connecting externally in public hotspots, you would have to be logged to get any internet connection via a portal etc.  Why would an end user then want to reboot their laptop when they will initiate a manual connection post logon and get connected.

Why would an end user then want to reboot their laptop when they will initiate a manual connection post logon and get connected.

 

I mean upon next reboot pre-logon will happen.

prelogon would only work if they have a valid internet connection even after a reboot.  Some hotspots ask you to login again to after a reboot so no internet connectivity is available.  This is where prelogon would be pretty useless.

Without internet how device will connect to portal/gateway? Its not a problem with pre-logon. Internet is required even for on-deman, user-logon.

yes I am aware they all need internet connectivity.   However, prelogon is supposed to be deployed before a user logs in where on demand and user-logon are pretty much post login ways of connecting.   When a user is logged in, they can get internet connectivty and then use the on-demand or user-logon as usual.

 

Thanks for your help on this, just wanted to confirm prelogon only works truly only if you already connected to the internet before logon hence it is useless otherwise.

Hello,

 

We use pre-logon and grant access to only domain login required resources.  Once the user logs in with their credentials they get full access.  In the hotel scenario pre-logon can't work so you log into your laptop and authenticate against cached credentials.  Once you have your internet connection GP will pass your credentials and you get your access.  If the user tells their computer to remember the wifi settings then subsequent connections will use pre-logon.  

 

Hope this adds a bit of clarity.

 

Phil

Alot of hotels ignore saving portal passwords on reboot or restart and ask to re-authenicate etc hence why I am asking why prelogon can be useful in these situations.  It works great for home users who have a wifi password profile saved in their laptops with saved wifi keys, but for public hotspots the solution is not viable.  Hence, i think prelogon is useless without a valid internet connection pre logging into your laptop.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!