Radius Auth Profile with PEAP-MsCHAPv2

Has anyone successfully integrated Radius Auth profile PEAP-MsCHAPv2 with NPS or any other Radius platform?

I have configured my Radius Auth Profile and attached relevant Cert profile to it as per below knowledgebase article.

https://knowledgebase.pal

Event Reminder: GlobalProtect - Secure and Seamless Remote Workforce Deployment

Hey everyone, 

Just incase you missed it, I wanted to take a second and let everyone know about a new LIVE event that is happening on July 6th at 8 AM PDT. 

This event is going to be all about GlobalProtect and how to deploy a secure and seamless

Blank page on internet explorer when opening email links

I have a few users reporting problems with opening some web pages in internet explorer (IE) when connected to GlobalProtect. Clicking on the email link simply opens up a blank page in IE. When the same link is pasted in Chrome, it works OK.

When using

GP Prelogon User name after password expiration

Hi All,

Currently using GP deployed as pre-logon. When users have to change their passwords either by choice or after the password has expired, the GP login field always displays the username in the login field with the domain credentials when standa

GLOBAL PROTECT login failing intermittently with 2 factor authentication for security groups

We are implementing 2 factor authentication and it is failing intermittently when using security groups in the authentication profile.  When we use "all" in the LDAP tree, it works like a champ.  When we go to a single group, it fails with "user not

GlobalProtect Linux CLI - connect pre-logon

I'm trying to configure my client to automatically connect to the VPN when it is booted.  This should happen before a user logs on.  My shell script in cron is not running @reboot.  The client connects perfectly when run by the user, but not pre-logo

HIP checks for anti-malware and mobiles

We want to enable HIP check on anti-malware for Windows and Mac.

I have configured the HIP objects, Profile, and notifications for no match which is working but two issues.

1. the notification shows when IOS and android mobiles connect.

2. How can I a

Secure Renegotiation Support

Are there any current versions of PAN-OS that support secure renegotiation? If yes, can someone point me to a guide with how to configure it?

Azure AD GlobalProtect Clientless Portal SAML Domain issue

Hi All, I am able to authenticate users against the portal with SAML and Azure AD all good. Since I can't pull groups from Azure I'm using LDAP for the portal and policies also working. The issue is that the user from Azure is coming down to the fire

Does Global Protect support LEEF format on forwarding the log to Qradar

Hi Everyone,

Greeting!!

I have a concern regarding the Global protect log forwarding for forwarding the logs to Qradar SIEM Tool.

The concern is about whether Global Protect support for LEEF Format if it does support i want a document that contains th

Disable NetBIOS over TCP/IP on PANGP Virtual Ethernet Adapter?

It is our corporate policy standard to disable NetBIOS over TCP/IP for the IPv4 component of all network adapters on corporate devices as a preventative security measure.  This is achievable via powershell scripting on all Windows devices.  However,

Global Protect After Prelogin the switch to user is not changing IP networks

We are using machine and user certificates from a windows server 2016 CA. to authenticate when using Global Protect.

• Step one is the prelogin connections and it works as intended.  The IP address is assigned on 10.1.1.0/24 network.
• Once the user logs i