Hello everyone,
We have configured a new set-up for GlobalProtect which use Auzre SAML authentication and Microsoft Authenticator
It's all working fine with the exception of this weird behavior:
- User connect to the portal with SAML authenticatio
...
Hello team,
I have an issue with the exchage key ECDHE size with Global protect.
Our Qualys scans show that we accept keys of insufficient size in ECDHE.
The problem is that on our equipment, we obviously cannot set the size of the keys.
When I che
...
Hello all,
How do I perform the Enforce Global Protect Connection for Network Access functionality on the MAC?
It works fine in Windows but not in MAC.
Is it possible to control through the Hip profile function?
Thanks,
I have configure a security policy for global protect access.
the security policy I added below app-id
panos-global-protect
panos-web-interface
SSL
From my traffic log I can see my firewall is allow port 4443 traffic for this security rules. From
...
Hi team,
I am using GP (build # PanGPLinux-5.2.6-c18 ) on Ubuntu 22.04 LTS.
I am unable to connect to VPN and get the following error:
Gateway XXXXXXXXXXXX: Could not connect to gateway. The device or feature requires a GlobalProtect subscripti
...
Hi all, I have a peculiar problem that I would appreciate help with.
Myself and the IT team(me being part of the security team) are piloting the GP with Prisma sase as the vpn of choice for our organization. We have two endpoints with it - a mac and
...
Hello All,
This is my topology I have configured Clientless VPN hosting two application as, paloaltonetworks.com (external-application) and amazon.forest.in (internal hosted application). But i am unable to access the application that hosted inside.
...
I've read a few posts on Split Tunnel by Domain Name. But so far I am only able to get
specific routes to work and not split tunneling by domain name. My test is ipchicken.com
as traffic to it will reveal either my home IP as the source or the corpora
...
We're running macOS Ventura clients and deploying GlobalProtect 5.2.12-26
We’ve been deploying GlobalProtect for the last year without profiles, No issues. We made a recent change to do HIP checks on endpoints, like verify Jamf is running before yo
...
Hey Guys,
We have several employees doing the following thing when working from home:
They have their personal laptops (lets call it PL) and they have their company issued work laptop (lets call it WL).
WL has global protect installed. These employee
...
we have configure the global products saml authentication with 443 in azure AD but we need to configure with the custom port number 1194 is it possible
Hello Team!
My organization runs several different windows systems, e.g. 7/8/10/11. Some versions of GP do not work on older type 8 systems, the upgrade passes correctly but GP stops working on that system and unsupported versions.
https://docs.palo
Hello Team.
Our customer is using Android 12 and wants to connect to GlobalProtect without using app.
Android 12 only accepts IKEv2 and the L2TP, IPSec configuration has been deleted.
Is there any way to configure using Android's VPN setting?
Thank you
Hi All,
Few of the users are not able to connect to the Global Protect. From Status i can see few users are connected and all the Tunnels are UP. But only few users are unable to connect to the Global Protect. It just says connecting and doesn't conn
...
TomYoung
on:
Plaoalto PA1410 Model
reaper
on:
Global Protect portal entry
TomYoung
on:
2FA and certificate
aleksandar.asta
