I need some help with this. The other day we committed changes to our firewall due to switching back to our original server certificate that we were using temporary a TestGP certificate which was created by PA support team to test our global protect issue.
Once the changes were committed, we get the error "no globalprotect portal license: SSL VPN config "Client VPN internal gateway will not take effect".
Since our globalprotect client is still working on our firewall and users are still able to connect, how do we get rid of the above error?
We are using version 4.1.6 which we had to install from version 4.1.2 due to issues with a buffer leak (PAN-OS Software Buffer Leak, Issue ID 36829)
Any insight into this?
The first question would be, do you guys have a global protect license? If you don't then you wouldn't be able to use the detect gateway features. You should be able to remove the internal gateway from the GP configuration and you should no longer see that error message. The detect gateway feature is only avlaible for licensed global protect.
Its confusing because you still use the GP client if you don't have it licensed but it will only act as an SSL client without the additonal feature set.
Yes we do have a global protect license and it is currently activated. Could it have been prompted this error message after a committ when it was removed and readded?
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!