Not a problem. As Always, your replies are very helpful! So yours, if turned on, are always VPN'd in. I'm starting to wonder if you don't use the tunnel, if user-id actually works on an iOS device.
I tried to do this without an internal gateway and we ran into problems with "enforce global protect for network access" and the tunnel not being established. We ended up doing an internal gateway and you're right, it doesn't identify the users. iPads are kinda terrible at being identified. We are doing the identification over radius through our NAC. We are sending the user info along after a successful authentication.
Just so I can confirm,
So you did try this internal only, without a tunnel, using Global protect on Ipads, manually signed into the GP agent, and it didn't identify the user that was signed in like you would expect it to?
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!