Device Block List for GlobalProtect - where is it in v10.x?

Both this: https://docs.paloaltonetworks.com/globalprotect/9-1/globalprotect-admin/host-information/block-device-access

and HELP indicate an DEVICE BLOCK LIST available for GlobalProtect.  When in the FW GUI I should see it in the GlobalProtect menu.

GlobalProtect 6.1.0 for Linux Fedora 39

hi all,

Our EU is currently on GlobalProtect 6.1.0 on PA-5250 firewall, we just wondered if this GP 6.1 support Linux Fedora 39? I tried to find any legit resources that would mention this but couldnt find anything helpful. Would like to share the

How to validate user/endpoint is fetching which profile from GP Portal Agent configuration.

Hello Team, 

I have configured multiple agent profiles in the GP Portal and I want to verify which agent profile is currently being fetched by individual user, How do i verify that from the firewall or endpoint?

Context: I have profile 1 which has

GlobalProtect 6.2.2 connects automatically despite on-demand is enabled

Hello everyone,

After upgrading GlobalProtect from 5.x to 6.2.2 users started to complain that GP is connecting automatically after logging in to OS. Agent App configuration hasn't been changed and still is On-demand.

There is addressed issue in GP

HIP Checks failing GP failing GP users called in ACL's when source device is Apple

Hi All,

So I have Global Protect running with the HIP license.  Our current conditions for HIP connectivity are; 1. Must be Windows 10 or 11, must have Crowdstrike installed and running, must have Zscaler Client Connector installed and running.  I

Please share link to Download and Install the GlobalProtect App for Linux CLI version

Hello Team,

Please share link to Download and Install the Global Protect App for Linux CLI version

Requesting to share the link at the earliest

Thanks & Regards / ramu

Domain Split tunnel 'under the hood'

hey, 

can someone please explain how this feature work from the stage of open the browser and surf to www.google.com until the GP client decide it should enter the tunnel?

for example

1. GP listen on the nic for dns queries

2. GP check with the s

Global Protect on macOS Sonoma 14.2 (betas and now release)

I generally try to run macOS beta version to jump ahead of any issues.  I've been running macOS Sonoma 14.2 beta (2 and 4, specifically).  In my testing, the Global Protect VPN client successfully connects (we're using certificates on in this case) b

global protect ipv6 support

hi everyone,

I have GP configured for ipv4, it works (I also have both ipv4 and ipv6 addresses delivered via dynamic assignments from the isp for the internet link)

in the configuration if GP I use "none" under the IP assignments for ipv4 as I gues

SAML Authentication - Users not prompted for password or MFA

Hi all,

We've setup SAML / SSO and all works OK , however, when GlobalProtect starts, it automatically connects without asking for any creds. I'm assuming this is a result of the machine being joined to the same domain so the password is not needed.

GlobalProtect Logon Banner with Accept button

I'm trying to figure out if therre's a way to configure GlobalProtect to prompt the end users to accept a logon banner message when they've entered their credentials successfully in the GlobalProtect app. Cisco Anyconnect can accomplish this in the g

Global Protect Slowness issue

Hi Team

I'm facing issue with when i connect to VPN then my laptop internet slows down.

What variable controls "finding the best available Gateway"

Env: PRisma Access ; GP Client 6.2.0-89

What variable controls the "finding the best available Gateway" ; We are experiencing anywhere between ~2 to 7 minutes to get connect the gateway? How can we manipulate this algorith to not do this 'Finding b

how to upgrade Globle protect version from 5.1.6-16 to 5.2.13 through Intune portal? do i need to uninstall the previous version then install the new