This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Resolved! Global Protect Clientless VPN

Hi Guys, I am new to Palo and looking for little guidance. I setting up a clientless VPN along with GP. (one user will get access through GP Agent and second user group will only access the Clientless (web portal type). I have the GP connected, SplitTunnel working no issue - I am having issues connecting a user via ClientLess. I have pub...

KGupta133201_0-1742625908851.png
KGupta133201_0-1742626101937.png

Resolved! Limit access to physical adapter using Global protect

I want to preface this, we are not having issues with Global protect per se, rather we are looking to limit the access to the device running global protect. We recently have seen an instance of a device running GP that was locked due to a bad actor RDPing to the public IP address of the device. We are assuming the device was connected directly...

Resolved! GlobalProtect doesn't upgrade

Our current version in clients is 5.2.7. Now I have activated 5.2.8 but clients doesn't upgrade. Our setting for upgrade is allow transparently. Client machines shows pop up that GlobalProtect agent upgrade is in progress please wait etc... but nothing happens. Previous update to 5.2.7 couple of month ago went smoothly. This is first time this k...

ToniE by L2 Linker
  • 16439 Views
  • 8 replies
  • 0 Likes

Upgrade GP client using SCCM

Hi All, We have a VPN solution with 3000+ users. However we need to upgrade the GP client ( Current: 5.2.6 | Targeted: 5.2.11) but due to the high volume, we are considering pushing the client over SCCM; group-wise. I have seen some articles outside the live community related to client upgrades over SCCM that can lead to issues. Could you please...

Udana by L1 Bithead
  • 3252 Views
  • 2 replies
  • 0 Likes

Nested plist capable for Mac GlobalProtect?

I want to get the GlobalProtect client version at portal connection, so I'm trying to get it via Portal Data Collection. The problem I'm running into is twofold:1. There is a /Library/Preferences/com.paloaltonetworks.GlobalProtect.settings.plist and a ~/Library/Preferences/com.paloaltonetworks.GlobalProtect.settings.plist. The value I want is in...

Palo Alto (GlobalProtect) URL duplicated

Hi, everyone!I’ve noticed that when I add a new application and try to access it using the clientless page, the URL is sometimes rewritten with a duplicate path. For example, it becomes:https://vpnconnect.mycompany.org/https/app1.menu.com/app/https/app1.menu.com/app instead of the correct URL:https://vpnconnect.mycompany.org/https/app1.menu.com/...

Global Protect VPN connection no web access

I have had to reconfigure our Global Protect due to dc failure. I am having issues with browsing the Internet once the VPN connection is successful. What am I missing? I cannot browse to anything using the VPN connection. Would love some help on this. Thanks

M.Lowe by L0 Member
  • 829 Views
  • 1 replies
  • 0 Likes

Global Protect VPN access to specific site

Hi I have Global Protect VPN setup at our Head Office site. We have PA-445 firewalls setup at all of our sites. Is it possible for a user to login to the VPN and select which site they would like to be connected to? They need to access a specific server to work remotely from home. Thank you

M.Lowe by L0 Member
  • 785 Views
  • 1 replies
  • 0 Likes

Way to disable logon prompt when start Global Protect client

New Global Protect user - I have an odd question regarding the Global Protect client. Is there a way to not have the sign on prompt when you start the client? We load the client at startup of the laptop to provide a way for our help desk to access the laptop in case it loses its trust to the domain and the user cannot login. We are starting to r...

Wberry by L1 Bithead
  • 2009 Views
  • 2 replies
  • 0 Likes

GlobalProtect Always-On Being Blocked by WDAC (AppLocker)

We are using always-on VPN prelogon SAML and it works fine. However, after deploying a WDAC (Windows Defender Application Control) policy to lock down a device to select apps, Global Protect prelogon no longer works on that endpoint. It works if we remove the WDAC lockdown policy so it's definitely being blocked, but the following locations have...

L.Dyson by L0 Member
  • 3080 Views
  • 1 replies
  • 0 Likes

Resolved! Ubuntu 24.04 Error: QLayout::removeWidget: Cannot remove a null widget.

After entering the VPN portal addresses and pressing Connect, the PanGPUI app becomes unresponsive. The PanGPUI.log file continuously logs the following error:"QLayout::removeWidget: Cannot remove a null widget."Could someone please help me resolve this issue? OS: Ubuntu 24.04.2 LTSPackage installed: Tried with both GlobalProtect_UI_deb-6.1.1.0-...

CristiS by L0 Member
  • 2028 Views
  • 1 replies
  • 0 Likes

GlobalProtect - Unable to Access the Internet

Hello my LIVEcommunity friends, I have a puzzler here for you all (I'm sure I won't be the only one with this issue). I have seen similar discussions, but none quite fit the bill. I have one user that cannot access Internet-based resources (web pages or applications) while on the GlobalProtect VPN. Split-Tunneling was removed from the environm...

CEvans16 by L0 Member
  • 1895 Views
  • 2 replies
  • 0 Likes

Resolved! Globalprotect login using OTP (radius server) keeps asking one OTP for both portal and gateway despite auth override configured

Hello. so I have a strange issue. for a setup we have a gp portal and gateway configured. the authentication to both is an auth profile or sequence that involves sending a username and OTP token code to a radius server. the user has to enter both 1 otp for the portal login and then a differnt otp for the gateway login. I understood enabling "gen...

Multiple DHCP Leases with Global Protect

Environment: panos 11.2.4 h5, GP 6.3.2-525, New customer/configuration We are running into an issue where a GP user that logs in from their home, gets a DHCP/dns record tied to the GP MacAddress via our internal DHCP/dns Server in the expected subnet. That all works. If they come into the office and connect to the internal network they get a...

  • 2069 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks