Global Protect DNS Issue

Hi Team,

We are facing a weird issue with GP. Random users connecting to GP is being assigned with the Loopback IP(127.0.0.1) as DNS. They have to go to settings and then remove the loopback IP from the DNS only then it starts working. This is not fo

GP MFA Authentication Notifications Non-browser-based applications

Hi,

I try to configure a MFA notification, so the GP app will trigger a pop up message to authenticate with a radius server.

Here the config guide:

https://docs.paloaltonetworks.com/globalprotect/10-1/globalprotect-admin/globalprotect-user-authentica

Global Protect using Duo v2 Multi Factor Authentication profile

Hello,

I configured everything concering Global Protect and Duo MFA. But I get those errors:

This is for Captive Portal Authentication

This is for Global Protect Authentication:

I used for Portal and Gw of GP same CA self-signed cert (it is v

Incorrect Graphic used in Global Protect credential provider tile on Windows 10 - 6.2 Client

We are piloting pre-logon with our Prisma Access instance. Recently, we upgraded GlobalProtect from 5.2.x to 6.2.0-89 and noticed that the Global Protect credential provider tile is not the familiar globe, instead its the same graphic that is used fo

VPN Attempts from Rotating IPs and Generic Usernames

Hello all,

For several weeks, I have been getting many VPN login attempts from different IPs trying to login using generic usernames, like "guest", "support", "admin", etc.

Is this normal? Is there anything that I can do to stop this from happeni

Unable to upgrade GP on macos

Trying to upgrade GP to 6.0.5 from 6.0.4-26. Running macOS 13.4.1 (c). I've read the release notes, tried changing some system settings, Googled, and I'm not having any luck. Any guidance would be appreciated. See attached screenshot.  TIA

Problem with Certificate install on Apple Silicon Laptops and the workaround I found.

Good Morning Folks,

I've run into an interesting issue. My ISP forced a change to the static IP for one of my sites with a PA-220 running 10.2.3-h2. This resulted in changes to both my public IP and my GP portal IP.  When I finished changing them,

Global Protect - Display Issue

Hi there,

I have a user who's getting this really weird display issue with Global Protect - screenshot attached.

Troubleshooting attempted:

- uninstall, re-install

- ran app in compatibility mode

- adjusted display settings Windows applies to app

A global protect connected client machine access a resource(behind Cisco router) that is connected to the host PA 800 Firewall via IPsec

Hello Everyone,

I have a Palo Alto 820 Firewall locally and it has been licensed and configured with global protect for the remote mobility of our users. And It also has a Site-to-Site IPsec connectivity to a remote location of a different organizatio

Global Protect HIP Check and AD Computer Account

GP client upgrade fails to connect to portal after successful VPN connection?

I ran into an issue trying to push a GP client upgrade and seem to have run into a problem where, with multiple portals and gateways, the client can not reconnect to the same portal as it already authenticated against when connected to the gateway on

Checking if Global Protect is active (connected) via script or command line with the correct portal?

I was able to find a similar post here: LIVEcommunity - Checking if Global Protect is active (connected) via script or command line - LIVEcommunity - 505980 (paloaltonetworks.com) but was wondering if there is a way to also make sure that I'm connect

Checking if Global Protect is active (connected) via script or command line

Hello Team,

I would like to find out if there's an option to check if Global Protect agent is connected and VPN is active using Windows CMD or PowerShell script?

Thanks. 

Internet keep disconnect for USERS

Hi,

We are using PALOALTO since 2 years when we replaced our firewall cisco with paloalto we thought that the things will be normal, but after deploying it we started facing issues frequently. Our main problem is INTERNET DISCONNECTION from the tim