GlobalProtect Discussions | Palo Alto Networks

Resolved! GlobalProtect SSL Cert change take effect immediately or require new GP session login?

If I update an existing certificate for GlobalProtects Portal and Gateway does anyone know if that certificate change impacts existing already running connections once pushed or does it only take effect when someone reconnects again?

Resolved! Global Connect - Reverse VPN

We have been asked to connect to a customer using GlobalProtect, but are concerned about the possible risk of VPN reverse tunnel.

Is there a control in the software to restrict this and protect our network? (is it even a thing with GlobalProtect?)

Curr

...

Global Protect not taking new AD password

Hello,

Whenever we change any AD password, GB doesn't take the new password for like 2-3 hours. Can anyone please help me.

PA OS- 11.1.4-h1

GP - 6.3.1-376

Thanks in advanced.

macOS GP client says its connected - but it really isnt

removed

Resolved! Matching client config not found

I have a user trying to connect via Global Protect from a Win 11 client. The error is "matching client config not found". I have no issues at all connecting as that same user from a Win 10 client. Also we use Mini Orange for MFA which sends an SMS c

...

Resolved! Global protect configuration on Ipad and Iphone devices and Firewall configuration

Hi all, I have been consulting with TAC to configure Global protect for IOS devices (ipad, iphone), I use the same certificate that we use for PCs and it works correctly on PCs but on ipad and Iphone it does not work.
I would like to ask if anyone kno

...

Global Protect Auth Failure after FW upgraded to 11.2.4-h1

Hello,

We upgraded our firewalls to 11.2.4-h1 to patch the critical vulnerability recently discovered.

We use Global Protect with AO VPN and enforce network connection.

A problem we are seeing this morning is when our Global Protect clients are

...

global protect with SAML SSO authentication failed

after upgrading to gp client 6.2.6, we are facing authentication failed issue with few users.

user clicks to connect and then embedded browser shows error " authentication failed". log shows " Authentication failed: empty password'"

GPS logs shows t

...

Resolved! Portal access lost while connected to external gateway

This is a GP configuration that works, but the portal doesn't respond to web requests from the client while the client is connected to the gateway. There is only an external gateway. The portal and gateway share the same IP on an Internet-facing inte

...

GP continues reconnection attempts & shows "notifications" after explicit disconnect

App version: 6.2.3-270

User's steps:

Connect or just try to connect
Explicitly disconnect via ~~burger button -> disconnect~~ / cancel button.

Current behavior:

tries to reconnect
shows popup for OTP
tray icon is blinking

Expected: GP does nothing.

What is the expected behavior in GlobalProtect pre-login with a single gateway?

I am playing around with a new GlobalProtect configuration, using a pre-login always-on configuration with a single gateway. The pre-login VPN works fine. My understanding is that when a user logins into the PC, the tunnel is supposed to rename itsel

...

GP fails on iOS, connects on Android, Mac and Windows...

We're migrating to a new PKI, the Issuing servers are signed by the root and all (3) certificates (Root, Issuing 1 & Issuing 2) are being pushed to the iOS devices via Workspace One. The config is more or less identical to the original PKI (the old P

...

How to avoid GlobalProtect autostart on Mac

Hello,

I just had to start using the GlobalProtect VPN client for connecting to the VPN of a customer.

I'm using macOS Sonoma 14.4.1, and I installed GlobalProtect 6.2.0-89.

Is there a way to avoid having it running constantly in the background, and

...

Resolved! Issue - Global Protect 6.3.1 does not work with Microsoft surface pro 11th edition

Hello Everyone,

I wanted to bring to your attention that there seems to be a compatibility issue with Global Protect 6.3.1 on the Microsoft Surface Pro 11th edition. The software does not appear to work properly on this device.

The error message

...

Looking for ideas for this use case

I have some users who travel outside of areas we normally allow connections from (think vacation on a cruise etc). I want to given them access to M365, perhaps a few SAAS apps protected by SSO, but not necessarily to our Hybrid environment. I have se

...

Discussions

Resolved! GlobalProtect SSL Cert change take effect immediately or require new GP session login?

Resolved! Global Connect - Reverse VPN

Global Protect not taking new AD password

macOS GP client says its connected - but it really isnt

Resolved! Matching client config not found

Resolved! Global protect configuration on Ipad and Iphone devices and Firewall configuration

Global Protect Auth Failure after FW upgraded to 11.2.4-h1

global protect with SAML SSO authentication failed

Resolved! Portal access lost while connected to external gateway

GP continues reconnection attempts & shows "notifications" after explicit disconnect

What is the expected behavior in GlobalProtect pre-login with a single gateway?

GP fails on iOS, connects on Android, Mac and Windows...

How to avoid GlobalProtect autostart on Mac

Resolved! Issue - Global Protect 6.3.1 does not work with Microsoft surface pro 11th edition

Looking for ideas for this use case

Panorama managed - Global protect SAML cert renew - IDP xml import wrong expiry

Gloabl Protect -Gateway selection

SPlit tunneling issue on GlobalProtect

Global Protect VPN only on domain joined devices

GP User-logon (Always On) doesn't connect

Re: Adding PA DR site globalprotect SSL-VPN gateway

Re: What does it mean Stage and Event GlobalProtect Fields?

CSP unsafe setting detected by scanner on PA LSVPN gateway

Re: PAN-OS 9.1 GlobalProtect CEF Format

Unlock your full community experience!

Resolved! GlobalProtect SSL Cert change take effect immediately or require new GP session login?

Resolved! Global Connect - Reverse VPN

Resolved! Matching client config not found

Resolved! Global protect configuration on Ipad and Iphone devices and Firewall configuration

Resolved! Portal access lost while connected to external gateway

Resolved! Issue - Global Protect 6.3.1 does not work with Microsoft surface pro 11th edition