GlobalProtect Discussions

GlobalProtect and CPU usage

I am a software developer, using GlobalProtect to connect to my customer's VPN. Everything was working OK until recent 2 or 3 weeks, when I started to notice, that after GP connection is established, CPU usage rises to 100%. Fans work at full speed a

How to enforce use of Domain Address for GlobalProtect VPN

Hi there,

I am a total noob to firewall here... I just want to ask if there is any way/method to 
1. enforce the use of Domain Address to connect to GlobalProtect VPN

2. Disable the usage of public IP address to connect to GlobalProtect VPN.

A million th

MAC missing required input parameters

Hi all, 

from wednesday my Global Protect connection isn't working anymore. The message displayed in red is "missing required input parameters". I have uninstalled several times, no way to fix. Then I have initialized the machine moving to Sonoma OS

Block Global Protect from certain countries with an exception group

Hi,

Is there any guidance available to implement the ability to block global protect access from specific Countries for most users, but provide the ability to allow some approved users to access Global protect from the blocked countries , say via an A

exceed session closes after ~2 hrs on global protect vpn

We have 10-15 Mold Design users that are complaining that exceed sessions close around 2 hrs even when they are working while on VPN. They loose their work and need to restart and start afresh if the data is not saved.

The virtual adapter was not set up correctly due to a delay - Keeps returning

Hi all, we have been troubled with this issue for the past few years, and have never been able to completely get rid of it.

Every week we get a few machines with the error and have to uninstall, delete the Wbem repository, reinstall which will fix

Palo Alto Vulnerability CVE-2024-8687

Hi Team,

For CVE-2024-8687 we are using PAN OS 10.2.9-H1, but our Global protect version are Vulnerability affected version in this case we need to upgrade the Global protect  to unaffected the version.

GP Settings

I would like to limit the number of VPN sessions as 1 a user can connect to. For example, if I have already connected VPN from laptop A and attempt to connect VPN from laptop B, I want to block connection or terminate existing connection.

Is it possi

Understanding pre-logon logs

I'm trying to understand the global protect logs I am seeing.

I see bad actors from various countries trying to brute force username/passwords. 

I always see 2 logs per attempt. 1 Portal-auth Login Failure, and 1 portal-prelogin before-login succ

Verifying Pre-Logon or User Logged into GP Remotely.

We have some Windows machines on GP that connect via a pre-logon tunnel which then fully connects when the user logs in. We would like to target machines for a specific package installation push only when the VPN is fully connected (i.e. not connecte

Embedded Browser agent does not work in GlobalProtect SAML Authentication

The customer is using PAN-OS 10.2.4-h2, and configuring GlobalProtect agent setting "Use the Default System Browser for SAML Authentication" to "No" does not disable the default system browser for GlobalProtect SAML authentication.

The embedded bro