GlobalProtect Discussions | Palo Alto Networks

Resolved! GlobalProtect Gateway Portal and IP via DHCP Public IP

Hi All,

I have a question. Can we deploy a GlobalProtect (Gateway and Portal) on Strata Firewall via DHCP Public IP? I am familiar with configuration via public static IP. But on dynamic public IP, what if the ISP Leased you a brand new IP? What will

...

Resolved! Global Protect Client App Customisation

Hi Folks,

We have customised the GP Portal with our company Logo and some info for the users. Our director seen this and is happy.
However, most of our users get the app deployed to their machines via GPO. Branding is important to our senior team.

Ther

...

Global Protect Prelogon not working

Scenario is we recieve new laptop with pre loded certs. I want that laptop to get connected to globalprotect gateway using pre-logon once it has IP it will get connectivity with DC and later it gets renamed to user name we login.

I am working on above

...

Gateway side not seeing Satellite published subnet

I've just set up a PA-850 as a satellite to my main 3050 and the connection seems good. All the subnets published by the Gateway can be seen by systems on the Satellite side. However, the subnet being published by the Satellite can't be seen on the G

...

Resolved! Stack overflow in PanGpHipMp.exe

On my laptop, I'm receiving the following crash notifications in my Windows EventLog about 2-5 times a day.

Faulting application name: PanGpHipMp.exe, version: 5.0.8.4, time stamp: 0x5e28f98d
Faulting module name: PanGpHipMp.exe, version: 5.0.8.4, ti

...

Allow traffic to specified FQDN enforce globalprotect for network access?

Has anyone tried using this? Wondering how it works, and if it is an "and" or an "or" if you specify IP's in the "allow traffic to specified IP's when enforce globaprotect for network access is enabled.

I'm trying to get users out to something

...

Resolved! GP SAML Client Certificate

Hi,

we are about to switch to SAML (from ldap). We use an on premise ADFS for this. The configuration fits so far except one thing. When i connect via SAML to our portal i get a popup to confirm the user certificate. The user certificate was issued b

...

Users are randomly dropping IPSEC and establishing SSL connection

Users are randomly dropping their working IPSEC GP connection and switching to SSL. Is this somewhat normal operation of UDP across the internet? Is there any hidden timeout/handshake variables that can be set to allow the IPSEC not to drop so fas

...

Resolved! Internal gateway... how to share user information?

Hi, if i have a couple of internal gateways (A B C) deployed. When an user authenticated successfully to A, the firewall will get its user-id "xxxx@yyy.com"... how do i share this user-id info to gateway B and C, so that they will be able to map IP -

...

GlobalProtect could not connect - socket error 10047

Hi,

I got two computers that have installed agent GP 5072 and are connected to the same home network. The first one with win10 has no issues in connecting. The second one mounts win7 and its connection always fails with error "Could not connect to the

...

GlobalProtect User REport

hi everyone ,

i need help with small issue, is there any way to find list of users that never connect ?

i can generate report for last login , but if the user never connect it will not show.

when corona started we created users for all employes (local u

...

SAML with ADFS and GP

Hi Everyone

We are currently using GP with LDAP as an authentication method. This works like charm.

Now, we want to start using the AZURE MFA option that we have configured on our ADFS servers.
I’ve managed to setup the SAML between the ADFS servers (20

...

Prelogon PC not showing in Gateway Remote Users

I'm trying to set-up GlobalProtect PreLogon using this guide: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClEYCA0

It only seems to be working if I logon to the PC and sign in with an account. If I logout the connection i

...

Resolved! GlobalProtect - Renew Certs and Upgrade Clients for remote user in production

Current CA and Device Certs need to be renewed. GP client software updated.

Can someone tell me how folks are doing this if they need an active GP VPN connection to deploy to the clients in the first place?

We do not use Portal. - and Users cannot in

...

Resolved! Cert profile and SAML to Azure with GP Gateway Machine Cert Possible?

Is it possible to use a Certificate Profile to verify a machine on your GP Gateway, all while using SAML authentication to Azure? SAML to our Azure instance works great for us now, but does the firewall use the certificate profile only as a 'pre-log

...

Discussions

Resolved! GlobalProtect Gateway Portal and IP via DHCP Public IP

Resolved! Global Protect Client App Customisation

Global Protect Prelogon not working

Gateway side not seeing Satellite published subnet

Resolved! Stack overflow in PanGpHipMp.exe

Allow traffic to specified FQDN enforce globalprotect for network access?

Resolved! GP SAML Client Certificate

Users are randomly dropping IPSEC and establishing SSL connection

Resolved! Internal gateway... how to share user information?

GlobalProtect could not connect - socket error 10047

GlobalProtect User REport

SAML with ADFS and GP

Prelogon PC not showing in Gateway Remote Users

Resolved! GlobalProtect - Renew Certs and Upgrade Clients for remote user in production

Resolved! Cert profile and SAML to Azure with GP Gateway Machine Cert Possible?

Global Protect Portal / Clientless VPN does not recognize SAML username after update to 10.1.14-h20

Global Protect Connectivity Issue

GlobalProtect Agent constantly 'Not Responding'.

GP and auth fails

One Certificate Profile with multiple certificates

Re: Global Protect Blank Screen on Windows 11

Re: Global Protect Portal / Clientless VPN does not recognize SAML username after update to 10.1.14-h20

Re: Global Protect Connectivity Issue

Okta Verify window behind GP login window fix

Re: Local and SAML users authentication on the single GP Portal and Gateway

Unlock your full community experience!

Resolved! GlobalProtect Gateway Portal and IP via DHCP Public IP

Resolved! Global Protect Client App Customisation

Resolved! Stack overflow in PanGpHipMp.exe

Resolved! GP SAML Client Certificate

Resolved! Internal gateway... how to share user information?

Resolved! GlobalProtect - Renew Certs and Upgrade Clients for remote user in production

Resolved! Cert profile and SAML to Azure with GP Gateway Machine Cert Possible?