This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Query with generating Wild card certificate for GP Portals/Gateway on the firewall for requesting CSR with GoDaddy CA

Hi All, We are having 3 ISP's and one GP Portal/Gateway pair configured on each of the ISP interface total of 3 GP Portal/Gateway on the single firewall all are accessed by FQDN name We had bought 3 domain names from Go Daddy for all of our 3 ISP IP's namely (for example : ISP 1 IP - a.vpn, ISP 2 IP - b.vpn.com, ISP 3 - c.vpn.com) and using it i...

tamilvanan_0-1632548703763.png

Resolved! AzureAD Group Mapping for GP

Hello, We're currently implementing GlobalProtect with SAML Authentification to AzureAD only (no hybrid) based on groups for easier management. Example :Groupe1 is given an IP_Pool1 IP with access to subnet1Groupe2 is given an IP_Pool2 IP with access to subnet 1 and 2 As of today, we didn't find any way to do it properly and from what we've seen...

GP_VPN Disconnection Issue

Hi All, We are having two ISP connections and configured an GP Portal/Gateway on each ISP connections(Primary Portal/GW on ISP 1 and Secondary GP Portal/GW on ISP 2). On firewall the ISP 1 is configured as default route and ISP 2 is configured as back-up default route and path monitoring configured on ISP 1. We could see in the system logs that...

Global Protect at a IPsec S2S branch office

Hi allWe have a load of small branch offices that terminate at our azure Palo Alto gateway over an IPsec tunnel (via a Draytek router). This all works and allows printing & RDP to onprem services. We also have the Global Protect gateway on the same Palo Alto albeit on a separate subnetWe are starting to pilot win10 devices with global protec...

benslade by L1 Bithead
  • 2051 Views
  • 0 replies
  • 0 Likes

Exclude Zoom from GlobalProtect

Hello, I'm working on excluding Zoom from GlobalProtect. I came across this articlehttps://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PPDSCA4&lang=en_US%E2%80%A9 For windows, there is an error, instead of excluding %AppData%\Roaming\Zoom, you just need to use %AppData%\Zoom, as %AppData% already takes you into the roa...

global protect and windows 10

Hi Guys, Having issues with the Windows 10 2004 and Global protect. Users on this version of windows seem to have intermittent disconnection from GP. They are currently on GP ver 5.2.7 but still having problems. Has anybody else seen this issue?

Palo Alto GlobalProtect - Detailed HIP logs not seen in the HIP match logs

We have GlobalProtect enabled with HIP. I am able to see the HIP match logs as a summary in the HIP match logs page but wanted to check if Palo alto has the capability to show the detailed information that's collected as part of HIP. For example, if my HIP object has a object name to check for AV within which multiple AV's are mapped and if we w...

GlobalProtect - Limited SANS in a certificate

We need to setup a new GlobalProtect Gateway but the current clients certificates are not using a wildcard certificate but a certificate with SANS entries for the gateways. It seems I can only generate a new CSR that is limited to four (4) SAN entries. Does anyone know of a way around this to allow for more than four (4) SAN (hostname) entries?...

Resolved! GlobalProtect Connection Issues after April 2021 Windows Updates

After installing the April 2021 windows updates our GlobalProtect clients started having issues connecting where it would take several attempts to get connected normally seeing 3-4 connect then disconnect cycles before finally staying connected. We confirmed that after uninstalling the windows update GlobalProtect behavior returned to normal, ho...

bcatlett by L0 Member
  • 14101 Views
  • 2 replies
  • 2 Likes

Global Protect Per-App VPN in Intune for Andoid devices

I need to resolve the following task:when user start Google Chrome or Edge browser on Android device traffic only from this applications routed via VPN,all other just for instance, Microsoft Teams or Outlook should goes directly to Internet.Mobile devices are enrolled in Intune with Android Fully Managed ProfileMy approach is:I'm try to configur...

GlobalProtectVPN.PNG
OSokol by L0 Member
  • 3702 Views
  • 0 replies
  • 0 Likes

Resolved! How to configure a global protect so that they user choose which VPN profile/group to connect?

As part of migrating from AnyConnect VPN to Global Protect remote access VPN: -Use Case:We are using Azure AD for authentication and the GlobalProtect authentication profile is configured to use Azure AD for SSO authentication;We want remote users to use GlobalProtect remote access VPN to access enterprise data center resources;A GlobalProtect P...

Dereje by L1 Bithead
  • 7543 Views
  • 1 replies
  • 0 Likes

how to use Panorama to configure globalprotect cookie based authentication

Hi Members, Is there a way to use panorama to configure globalprotect cookie based authentication. Requirement is that Panorama should allow to configure globalprotect portal and gateway related objects changes with the help of templates and later this new config needs to be able to push devices which managed accross panaorama ..? Thanks,Shiva V...

Resolved! Linux: Routing traffic through GlobalProtect

I am probably overlooking something basic here, so maybe this has a simple solution. I am trying to use GlobalProtect to access resources, I confirm that I am authenticated, and connected to the gateway. But It doesn't seem to be routing any traffic through the VPN. Kubuntu 20.04GlobalProtect 5.2.5-46 Any ideas?

GlobalProtect Linux Smart Card

There is a Smart Card solution that uses pkcs#11 and middlware that provides OS communication to the card. Is there a way to use this certificate from the card for GlobalProtect authentication?GP is looking for a cert in a specific location, but it is not possible to extract it from the Smart Card and import for GP (https://knowledgebase.paloalt...

nikoo by L3 Networker
  • 4902 Views
  • 2 replies
  • 1 Likes
  • 2069 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks