Verifying Pre-Logon or User Logged into GP Remotely.

We have some Windows machines on GP that connect via a pre-logon tunnel which then fully connects when the user logs in. We would like to target machines for a specific package installation push only when the VPN is fully connected (i.e. not connecte

Embedded Browser agent does not work in GlobalProtect SAML Authentication

The customer is using PAN-OS 10.2.4-h2, and configuring GlobalProtect agent setting "Use the Default System Browser for SAML Authentication" to "No" does not disable the default system browser for GlobalProtect SAML authentication.

The embedded bro

Global Protect not working with MacOS Sonoma

Hello folks, 

i have a massive issue with GLobalProtect since the MacOS Sonoma Upgrade. It does not connect to the VPN Service. It tries to connect for a minute or so, but than it just says it can not. I don't even get to the part to insert a user

Global Protect Captive Portal allowing defender to see other devices on network

Hi,

Our security team is seeing Windows defender able to probe guest wifi at hotels and see other devices like phones and laptops on the network, until Global Protect can finally connects to one of our gateways. They want the network restricted to

Not able to connect VPN on HP Envy

Every time I try to connect to VPN Global Protect on my HP Envy laptop. It won't allow me to enter my credentials. It's just blank. Please look at the attachment. 

Global Protect is showing "unable to connect gateway" intermittently

Global Protect is showing "unable to connect gateway" intermittently. 
It is also observed that the PANOS network adapter not releasing the IP after we disconnect the VPN which could be the issue. Is there any one know the fix...We are using version 6

global protect whoami

Hello,

I am seeing a weird activity from globalprotect agents where the agent is trying to execute wa3_3rd_party_host.32.exe

and the agent after that is executing whoami command.

PS: the HIP policy is disabled on the firewall

Consuming user group in GlobalProtect SAML Authentication

A bit of background: We are an all-Google G Suite company. We do not have internal LDAP servers. Everyone auths to Google. We are using PA 3060s as our firewalls and VPN systems.

We are getting ready to turn on SAML authentication for GlobalProtect.

Intune with IOS and Global Protect, utilizing certificate-based authentication troubles.

We have been trying to migrate a client from Airwatch to Intune for MDM management. Part of this deployment was implementing certificate-based authentication for their Global Protect VPN client.  We have been successful with Windows, and Android. How

Global protect: separate vendors and employees

Setup:

We have one GP portal and one gateway currently, used by employees and vendors.

All GP users are authenticated with Entra and Duo MFA.

We are using a public cert. for the FQDN and a single IP in the current setup.

Vendors are assigned to a dif