10-11-2021 01:37 AM
Hi,
We performed authorization on desktops and browsers using SAML login with GlobalProtect. We also did it on the mobile app, but we ran into a problem.
We provide the MFA process with push notification through our own application. GlobalProtect opens the browser to get authorization in the mobile application. After the login information is written, the notification must be accepted via the mobile application. At this stage, when the GlobalProtect application is thrown into the background and switched to the other application for notification acceptance, it does not provide VPN connection. The browser does not close the browser and does not provide the VPN connection after giving the "Sign-in Successful" information on the screen.
What solution would you suggest for this problem?
10-17-2021 06:36 AM
You are using per-app VPN? Have you checked MDM solution if it is configured correctly?
Also if you configure full on demand VPN do you see the same issue?
01-28-2024 10:07 AM
This is completely misleading...
Is there something new regarding SAML issues with globalprotect and Windows, Android...?
Obviously, those issues exist on PA side. I tested several options with PAN OS 10.2.6, win 10,11, GP 6.1.x, 6.2.x and there is much misbehaving while trying to connect (OKTA SAML implementation). PA never tested and publish some complete guide about this.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
