Globalprotect Smart Card configuration


Changes to the LIVEcommunity experience are coming soon... Here's what you need to know.

L1 Bithead

Globalprotect Smart Card configuration

So my company is working to setup a new PKI infrastructure with smart card logins for the users. I have looked at all the 2FA and associated articles about setting up the VPN but it leaves a lot to the imagination. I followed the steps creating the certificate profile and assigning it to the portal and gateway. But when i test it the issue i arrive at is the initial login to the vpn. If i were to sign into the workstation with my smart card and was already signed into the VPN it may or may not prompt for my pin. If i go into the menu and logout if the VPN it prompts for username and password. 

This could either be a failure on my configuration or a simple lack of understanding on my part. Is an initial login required and then never used again so long as you dont logout? Did i configure things incorrectly and it should login automatically? For reference we are attempting to swap from the existiny LDAP setup that uses the users login credentials to also login to the VPN. Any help would be greatly appreciated.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!