This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Versions of global protect

The current version of Global Protect is 5.2.13. Need to know what version to install next. Want to get to at least 6.2. Need support page for upgrading global protect and in what order the versions should be installed. Which ones need a REBOOT, and which ones don't need a reboot?

Global Protect and Internal Network routing

Hello, New Global Protect user here so bare with me. We have started using the Global Protect for our laptop users. As part of our configuration the client is loaded when the laptop boots up. The support team wanted this so they could still connect in the even the laptop lost its trust to the domain and the end user could not sign into the la...

Wberry by L1 Bithead
  • 1670 Views
  • 1 replies
  • 0 Likes

GlobalProtect Prelogon

Hello, Recently we had the new PANFW migration, together with the GlobalProtect VPN enabled. We are working fine with what has setup. As of our staffs we login to the GP VPN with the corporate computers pre-installed with machine certificates and also the client certificates. Now we are going to settle the issue when the staffs trying to logi...

How can I do a staggered roll out of Global Protect

I'm under the impression that if we change the version on our global protect portal, its all or nothing, and every client will attempt to upgrade from the firewall. We've done this in the past and there's always about a 20% failure rate where we have to use remote support software and painstakingly manually fix people. We want to avoid that. P...

ksauer507 by L3 Networker
  • 2803 Views
  • 7 replies
  • 0 Likes

Disable services VPN Global Protect, do not uninstall VPN software but still connected to the internet

I'm not an expert in Palo Alto, but while using the Global Protect VPN, I noticed that if I disable the Global Protect services in Task Manager, the VPN disconnects, but my computer can no longer connect to the internet. Additionally, if I want to completely uninstall Globa lProtect VPN, an admin password is required. Am I understanding this cor...

Global Protect VPN configuration issue

Hi Friends, Recently i am facing configuration issue with related to Global Protect. The customer has an ISP line connected to a router, and from the router, it's connected to a Palo Alto firewall. Now, the customer wants to use GlobalProtect, and I’ve completed all the basic configurations. However, I am encountering an issue while adding the...

3 (3).png

Clientless VPN Applications and Application Groups

Hi Community Friends, Strange issue with Clientless VPN Applications and Groups in the portal. When I assign applications to a User or Group they do not show up.. only applications set to ANY user. We have LDAP setup with Active Directory, the portal can see the groups I'm assigning inside the Global Protect Portal configuration. Further,...

While connecting to Global Protect, we receive an error "This site can't be reached"

Hello dear forum participants, For a couple of specific users, after user clicks on "Connect" on Global Protect and then enter their credentials on the web page ,we receive this error page below as "This site can't be reached" . Then no connection to Global Protect established. We uninstalled/reinstalled Global Protect, changed the defaul...

mcostura_0-1740406408300.png
mcostura by L0 Member
  • 1392 Views
  • 3 replies
  • 0 Likes

Downloaded and installed GlobalProtect app not running due to having macOS 10.15.7

Hi all, I've downloaded and installed the GP app. When I try to run the app, it's telling me that I can't use this version of the application because I have macOS 10.15.7, and I require macOS 11.0 or later. Looking around the internet, it seems that my macOS should be able to run the app. Does anyone have any workarounds for this? Thank you, J

Cached credential issue when using SAML with Global Protect Client and MS Azure

We are using SAML with Global Protect Client and MS Azure and it works well for us, with one caveat. We have a consultant who uses the Global Protect client to establish a VPN connection to their network. When I have them attempt to use the Global Protect client to establish a VPN connection into our network (using an O365 account on our tenan...

ddockter by L1 Bithead
  • 33025 Views
  • 12 replies
  • 1 Likes

Certificate Chain Requirements from External CA for Global Protect

Hi Everyone, So I'm having issues configuring my GP as it does not allow me to select the server-cert from the TLS/SSL Service profile Window. The server-cert is not even an option to select from within the window itself and when i try to import it from inside the TLS/SSL Service profile window - it imports but errors out saying the cert is inva...

GP7337_1-1738863827766.png
GP7337 by L1 Bithead
  • 1544 Views
  • 3 replies
  • 0 Likes

Resolved! Multple entries for "Allow specified fqdn when Enforce GlobalProtect Connection"

Hi everyone, Could you please help me to figure out what is the right format I should use to add multiple entries for "Allow specified fqdn when Enforce GlobalProtect Connection"? In the following support doc, I can see that I must put space before the wildcard character. Enforce GlobalProtect Connections with FQDN Exclusions Additionall...

  • 2069 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks