Configure GlobalProtect Pre-Logon using SAML authentication with Azure MFA

Is there a knowledge article for how to configure GlobalProtect with SAML authentication and Azure MFA.  Currently we authenticate using Radius with Azure MFA extension.  Currently we have test configuration with GlobalProtect using SAML authenticati

How to re-prompt authentication login when intregate OKTA when user close window promt login

Hi Expert  ,

I would like to know how to config GP to re-prompt authentication login when user close login prompt (We integrate OKTA)  because we found when user close the GP will connecting alway not prompt again even through will refresh connecti

Need to configure Globalprotect for NSX-T north-south traffic.

Need to configure Globalprotect for NSX-T north-south traffic.

Hi, 

I am looking for documentation of globalprotect VPN with NSX-T manager. Is this configuration possible?

If possible could you anyone help??

Thank you in advance.

Can PAN gateway client config use both IP based split tunneling *and* use domain name exceptions?

When I first set up the client-config a couple of years ago I tried out the name based split tunneling and it didn't seem to work. As I was under the gun I implemented IP based split tunneling but never ran the name based split tunneling issue to gro

SAML authentication with global protect gateway configuration client settings user set to specific

The customer tries to put specific users in the global protect gateway agent and he tries to give a specific IP pool to each user. If the user sets it to any then it's working but if the user sets it to specific then it's not working with SAML integr

Issue using MFA in GlobalProtect )

When connecting with Ironchip (MFA), two-factor authentication is only succesfull if the IP is specified in the gateway. If we use the domain to connect GlobalProtect the MFA is not working.

The client auth is 

HIP Check to check all browser version in host

HIP Checks can check for 4 different types of browsers version at the same time like Chrome, Firefox, Safari, Edge?

Need to Allow user to uninstall Global Protect with a Password

Hi all,

Here i have a requirement to uninstall Global Protect with a password.

i configured the APP Tab as "allow with password"

We entered the right Password, but still its showing Password does not match.

PAN-OS installed in FW 10.1.9 

Can an

GlobaProtec many accound and certificate on linux

Hi,
I have a Linux with 6 users profile , how can I setup Global Protect VPN so that each user will use their own certificate,
Global now sees the user's last imported certificate
Linux 20.04 ltsc
GP 5.3.4

Checking if GlobalProtect status is active (connected) via script or command line

Hello Team,

I would like to find out if there's an way to check if GlobalProtect agent status is connected and VPN is active on Macintosh using bash or zsh command line or script.

Thanks.

GlobalProtect IPv6 findings

With the IPv6 sinkholing feature not enabled, Mac and Windows users used to be able to successfully connect to IPv6 resources--seemingly completely bypassing GlobalProtect.  Then some Mac users reported not being able to connect to those IPv6 resourc

GP IPv6 split tunnel when sinkholing

If the IPv6 sinkholing feature is enabled for GP / Prisma Access, does split-tunneling IPv6 traffic work?  We have some users that need to access some resources via IPv6 but would like to sinkhole all other IPv6 traffic.

Global Protect Virtual adapter not installed on ARM64 win 11 device

I am using the win11 device with qualcomm snapdragon 8 gen3rx ARM64 CPU.  But there is no virtual globalProtect adapter installed.

1. I have also tried out different versions of global Protect but none of this works GlobalProtect64-6.0.5 and  GlobalP