This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

CVE-2025-0133 threat 510003 and 510004 detection testing ?

PAN state that as workaround/mitigation - block attacks for this vulnerability by enabling Threat ID 510003 and 510004 ( content v 8995 and that "it is crucial to ensure that Vulnerability Protection profiles are explicitly applied to the security rules that process traffic FROM GlobalProtect interfaces." I wonder if anyone has managed to valid...

Slowness in a specific gateway

I am experiencing a significant drop in internet speed (less than 1 Mbps) when connecting to a specific gateway using GlobalProtect VPN on my laptop. Here are the key points:Issue: Internet speed drops to less than 1 Mbps when connected to a specific gateway.Comparison: My coworker experiences good speed on the same gateway using his laptop. Whe...

We're encountering a GlobalProtect error stating 'Certificate is not within its validity period,' despite this being a newly configured Palo Alto setu

We are currently setting up a PA-VM Firewall under the Alibaba Cloud Platform. However, we are encountering an issue with GlobalProtect. The client keeps showing an error stating that the certificate is not within its validity period, even though the certificate is valid until July 2026, as this setup was just recently provisioned. We have alrea...

Glenyvie by L1 Bithead
  • 1418 Views
  • 2 replies
  • 0 Likes

Resolved! Cannot Connect to GlobalProtect from hotspot

I have T-mobile as my phone carrier and when I connect my work laptop (Macbook pro) to my personal phone hotspot GP is not able to connect. I did some search and found that people in past changed MTU value but tired and didn't work. I find this is as miss from GP because sometime there's power outages in my area and I have to use hotspot or ...

FAleais by L1 Bithead
  • 52211 Views
  • 19 replies
  • 1 Likes

GlobalProtect VPN Connection Failed - Wire Guard

Hello folks, I have a Unify firewall at home has a VPN setup to the NordVPN servers. There are two types of VPNs:1) OpenVPN2) Wire Guard VPN My work GlobalProtect VPN is working normal with the OpenVPN, but it is not working with the Wire Guard for some reason and I don't see a blocked traffic for that. Does anyone know or had similar situation ...

How to disable GlobalProtect autostartup?

Hi everyone, Recently my company gave me access to their VPN so I could get to the database while I am working from home (on my very own computer since the company did not provide one). I installed it and everything is working fine, except a there has been a lot of shady behaviour by this application:The application does not contain a setting to...

Daniel by L0 Member
  • 52265 Views
  • 8 replies
  • 1 Likes

Global Protect Not conneted due to (You are using Ethernet)

Hi, I have installed windows 11 on Parallels Desktop, I have installed Global Protect on it, but I'm not able to connect due to (You are using Ethernet). I have disabled IPv6, I have tried to change Parallels Network configuration to WiFi instead of Shared Network and the issue remain the same. Thanks & Regards Mohammed ElWattar

m.wattar by L1 Bithead
  • 1071 Views
  • 3 replies
  • 0 Likes

GlobalProtect Pre-Logon Prompting for User Certificate

We have GlobalProtect Pre-Logon working with machine certificates however once the user logs into their laptop they are also prompted with thier User Certificate each time. There internal CA does issue machine and user certificates. Is there a way to disallow the User certificate prompt? Do we need to also use User certificates along with machin...

CVE-2025-0141 GlobalProtect App: Privilege Escalation (PE) Vulnerability

Hi Experts, In description it says, "An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect App on enables a locally authenticated non administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows.". Since locally authenticated non administrative user is mention...

Automatic deployment of GlobalProtect for Mac via Intune

My Company uses Intune for Mac management, and we are trying to automate as many app deployments as we can. Right now, I am hung up on GlobalProtect. I have already created a line-of-business app using the .pkg provided by Paloalto for GlobalProtect. The issue I am running into however, is the fact that the installer has multiple options; 1. Ins...

kinits by L0 Member
  • 16216 Views
  • 11 replies
  • 1 Likes

Globalprotect end users are receiving default route (0.0.0.0) but it is not configured to do that

Hello masters,I need your help on how to troubleshoot an issue related to global protect. On our Access routes, no 0.0.0.0 are configured.We wanted to let users use their local gateway for any traffic destined to the internet.But they are receiving the 0.0.0.0 in their RoutePrint resulting to traversing their any traffic to the VPN.This is clogg...

Resolved! Global Protect 6.2.X, HIP Match and Fedora 41

Hello everyone, I am opening this discussion due to a "compatibility" issue between Fedora 41, the 6.2.X GlobalProtect client and the HIP match function. In our organization we are planning to move from GlobalProtect 6.1.X to 6.2.X. We collect posture data from the GlobalProtect clients and evaluate them against some HIP Profiles (such as patch-...

Resolved! GP Alert - Error code 44 - Invalid authentication cookie

Hi, all of our users seem to be successfully connected to GP, however, I am receiving the alerts like below (I've only removed/amended some sensitive information). Can anyone shed some light on this Error 44 and invalid authentication cookie? Anything I should be worried and anything I should/could do to rectify this? Thanks, G receive_time: 2...

GlobalProtect localDb auth change password

Hi, I want to configure global protect to authenticate with localDB users. My doubt is if its possible to change the password for the different users when they connect with GP the first time. We would need local users accessing the GP to be able to manage password changes themselves. Is that possible? what config should be done? Thanks

BigPalo by L4 Transporter
  • 1025 Views
  • 2 replies
  • 0 Likes

Default route using split by domains

I need to add this domain "*microsoft.com" in order to go into the tunnel but then i add the domain the GP config adds 0.0.0.0/0 route into the tunnel. Is there any way to avoid/deleted default route when you add any domain in split tunneling?

BigPalo by L4 Transporter
  • 941 Views
  • 1 replies
  • 0 Likes
  • 2062 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks