This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Global Protect Portal and weak cipher sets

Has anyone had success getting past a B on ssllabs for the globalprotect web portal. i have created the below ssl profile and bound it to the global protect portal. even though enc-algo-aes-128-cbc andenc-algo-aes-128-gcm are set to know, they still appear in the test show shared ssl-tls-service-profile TestSSLTestSSL {protocol-settings {min-ver...

JeremyD by L0 Member
  • 7118 Views
  • 2 replies
  • 0 Likes

GlobalProtect disconnect when remote machine display turns off

Hello, I am experiencing disconnects from a vendor GlobalProtect VPN on a remote machine when I close local RDP sessions to the remote machine. This issue is preventing automated jobs from running properly unless someone is RDPed into the machine. I have been working with the vendor (and my own Google-fu) on this issue for a month to no avail an...

Global Protect SCEP Certificate Username Format

We have SCEP configured and working with our internal PKI. The connection works, except the user certificates get assigned to username%40domain.com instead of username@domain.com. The Variable is set to CN=$USERNAME. It seems like its getting converted to html code for the @ symbol. Anyone seen this or any suggestions?

PPonzeka by L0 Member
  • 3043 Views
  • 1 replies
  • 0 Likes

Resolved! GlobalProtect Gateway Portal and IP via DHCP Public IP

Hi All, I have a question. Can we deploy a GlobalProtect (Gateway and Portal) on Strata Firewall via DHCP Public IP? I am familiar with configuration via public static IP. But on dynamic public IP, what if the ISP Leased you a brand new IP? What will be the behavior of it on the Strata firewall and the end users?Best Regards,Victor

Resolved! Global Protect Client App Customisation

Hi Folks,We have customised the GP Portal with our company Logo and some info for the users. Our director seen this and is happy.However, most of our users get the app deployed to their machines via GPO. Branding is important to our senior team. Therefore we have a wish to place our Logo in the app and possibly change the App Title to be more fr...

GN_ROS by L1 Bithead
  • 4178 Views
  • 1 replies
  • 0 Likes

Global Protect Prelogon not working

Scenario is we recieve new laptop with pre loded certs. I want that laptop to get connected to globalprotect gateway using pre-logon once it has IP it will get connectivity with DC and later it gets renamed to user name we login.I am working on above scenario but unable to get it working.That new laptop get pre-logon registry settings pushed lik...

Gateway side not seeing Satellite published subnet

I've just set up a PA-850 as a satellite to my main 3050 and the connection seems good. All the subnets published by the Gateway can be seen by systems on the Satellite side. However, the subnet being published by the Satellite can't be seen on the Gateway side. According to the Satellite Info section of the GP Gateway, it does see the satellite...

Resolved! Global Protect Certificate Authentication

Hi Team, We are using self signed certificate for user authentication signed by self-signed CA cert on Palo Alto for our global protect. does my understanding below is correct regarding certificate expiration/renewal. 1. if CA cert expired while user cert still valid, user does not need to install renewed CA cert.we can renew the CA cert on palo...

L1_ENG by L1 Bithead
  • 4806 Views
  • 2 replies
  • 0 Likes

Resolved! Stack overflow in PanGpHipMp.exe

On my laptop, I'm receiving the following crash notifications in my Windows EventLog about 2-5 times a day. Faulting application name: PanGpHipMp.exe, version: 5.0.8.4, time stamp: 0x5e28f98d Faulting module name: PanGpHipMp.exe, version: 5.0.8.4, time stamp: 0x5e28f98d Exception code: 0xc00000fd Fault offset: 0x00000000000248b7 Faulting process...

i3vi3v by L2 Linker
  • 20039 Views
  • 4 replies
  • 1 Likes

Allow traffic to specified FQDN enforce globalprotect for network access?

Has anyone tried using this? Wondering how it works, and if it is an "and" or an "or" if you specify IP's in the "allow traffic to specified IP's when enforce globaprotect for network access is enabled. I'm trying to get users out to something simple, like bing.com and finding that even without specifying an IP address, and only specifying...

Sec101 by L4 Transporter
  • 3928 Views
  • 1 replies
  • 0 Likes

Resolved! GP SAML Client Certificate

Hi, we are about to switch to SAML (from ldap). We use an on premise ADFS for this. The configuration fits so far except one thing. When i connect via SAML to our portal i get a popup to confirm the user certificate. The user certificate was issued by our internal enterprise ca. I think the certificate is not in the global protect browser-certif...

PhRose by L0 Member
  • 4145 Views
  • 2 replies
  • 0 Likes

Resolved! Internal gateway... how to share user information?

Hi, if i have a couple of internal gateways (A B C) deployed. When an user authenticated successfully to A, the firewall will get its user-id "xxxx@yyy.com"... how do i share this user-id info to gateway B and C, so that they will be able to map IP - user-ID info? Else the firewall policies i have will only works on A and not on B/C gateways. Th...

GlobalProtect could not connect - socket error 10047

Hi,I got two computers that have installed agent GP 5072 and are connected to the same home network. The first one with win10 has no issues in connecting. The second one mounts win7 and its connection always fails with error "Could not connect to the GlobalProtect gateway. Please contact your IT administrator." After digging in the PanGPS logs o...

MatteoD by L0 Member
  • 4960 Views
  • 1 replies
  • 0 Likes
  • 2069 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks