GlobalProtect signing in too quickly

I'm currently seeing an issue with GlobalProtect prompting for credentials if you sign into the account too quickly. My setup uses GlobalProtect in pre-logon always on VPN mode (kerberos) and the computer I'm using is Windows 11. If I sign into the c

What focal_rpm is?

Hello all, have a question - recent GP archive contains focal_rpm packages alongside with just rpms. Same is for deb. What is this "focal" version of GP and what is the difference?

Thanks.

FIDO2 support for GlobalProtect client does work in Embedded browser

FIDO2 Security cards during Entra ID SAML authentication does not work. The option to select a hardware "security key" during the Entra ID login flow is not shown. Only the built-in/embeded GlobalProtect web browser exhibits this issue.

We tried th

VDI and Global Protect (VMware Horizon)

I tried doing a lot of searching but could not find anything to help me out. I am trying to capture Global Protect as a virtual application so that it is not on my golden image (only a handful of people need it). I am able to install the software, bu

GP APP is in the Connecting... state and I can't do anything.

The mobile GP APP was distributed, and user authentication was configured with Entra-ID SAML.

At this time, if the account is entered incorrectly or terminated during browser authentication in the mobile GP APP, the GP APP is in the connecting stat

Help me with MFA AUTH duo

can anyone help me why athentication failed. Im using Duo v2 with PA ssl vpn

here is the video i've followed  https://www.youtube.com/watch?v=5kTOOHVE_-o

SAML Authentication into GlobalProtect

We started using SAML to authentication into GlobalProtect connected back through Entra. The problem is the user will be prompted to put in their windows credentials the first time they login, but say they disconnect and go to log back in to VPN it b

This server does not support Forward Secrecy with the reference browsers. Grade capped to B.

Hi Champions,

I have evaluated the IP address to the GlobalProtect gateway on the Palo Alto firewall via Qualys SSL Labs and got the following results. 

Object > Decryption > Decryption Profile is

I am trying to find out how to fix this iss

Custom vulnerability object trigger

Trying to use a custom vulnerability object to raise a threat alert when a user directly enters a request for access to an IPv4 address . eg http://12.34.56.78  .  Ive created a object , with a pattern of (.*((?:\d{1,3}\.){3}\d{1,3})) and applied it

How to Block MUs that have a back level version of the Global Protect client - in this case 6.2.2

How do I Block MUs that have a back level version of the Global Protect client - in this case 6.2.2(windows and Mac) but not effect the Linux users

Setting Up SSO In GlobalProtect Clientless VPN Portal App

Hello.

I have a GP portal setup and working with a published app for VMware Horizon. Authentication to the portal is setup with Duo MFA and works as designed. The issue is that I would like to reduce the amount of authentications after the user logs i

global protect agent not connecting after windows imaging with new updates.

Hi Team,

We are facing issue with our global protect agent not connecting after windows imaging with new updates. We were suspecting windows KB5018410 to broke this, but this is not installed.

The error we are seeing in logs is "client certficate not

Clientless VPN Decrypt error - 10.2.9-h1

HI Team

We are facing an issue where Clientless Portal does not show the login page.

Traffic reaches the external firewall we see the connection being allowed but it eventually gets denied with a "DENY - decrypt error". We are using the Go Daddy

Can't Access Firewall while Connected to GP

Hi Everyone,

We have a working GP setup and our users connect to the VPN without issues. However, when trying to access the firewall via its management IP while connected to the GP, we cannot reach the firewall. Other network resources specified in