This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Global Protect with WiFi and Lan

All our users have Global Protect installed in Always On mode and Internal Host Detection, Enforce Global Protect Connection. When they are in the office and connect to the local network via cable, Internal Host Detection is triggered and they connect to the local network without creating a tunnel. WiFi in the office is configured as guest WiFi....

Global Protect VPN client blocks internet connection

Hello, I work for a company that works with Global Protect VPN client, and when we connect to the VPN, internet connection get loss and can't get access to any kind of internet unless to their systems. I guess they have configured it for their security reasons or maybe for don't sent internet traffic to their network infraestructure, but are t...

GlobalProtect - Split DNS/Tunnel - Windows Firewall Profile

Does anybody see the same behaviour with GlobalProtect in a Split DNS/Tunnel scenario? Include Domains: *.company.tld (internal DNS name space used in Active Directory) When GlobalProtect is disconnected, Windows Firewall profile for physical network adapter is public. But when GlobalProtect tunnel is connected, then the physical network ad...

Anon1 by L4 Transporter
  • 1997 Views
  • 0 replies
  • 0 Likes

Resolved! GlobalProtect failing after upgrading PanOS to 11.1.4

Dear all, I have a very strange issue after I upgraded to 11.1.4 The mobile GlobalProtect client stopped working. The network connection is unreachable or the portal is unresponsive. I ran some packet captures and noticed that the firewall sees the SYN packets, but it never replies. Nothing in the transmit stage pcap Although I can see t...

GP cliente not working on IOS

I have a PA-1410 VM and the GP is not working for IOS devices, Android devices are working fine.The global-protect-client-package-version: 6.2.1 and it's running on sw-version: 11.1.2-h3

Senibo by L1 Bithead
  • 895 Views
  • 1 replies
  • 0 Likes

Resolved! Global Protect - Certificate Pinning

How do or do you recommend pinning your external global protect cert? In anyconnect you set the pin in the client profile. I cannot see where to do this in GP. Via panorama with the SSL/TLS certificate profile there is no option to pin to a specific CA. I haven't see this topic on the boards thus the reason for my post. Any ideas? Any help is ap...

NSutfin by L2 Linker
  • 2591 Views
  • 1 replies
  • 0 Likes

Resolved! Global Protect Failed Service Running

User got a problem when running global protect vpn at home, and i trying to reinstall, but service could not connect global protect service, I am trying update OS Windows driver but nothing happen, I need your support ho to fix it, thank you. PanGP Agent Failed ConnectedDriver Was Remove and service cannot running

Glo1.jpg
Glo2.jpg
Yapet_ID by L1 Bithead
  • 3973 Views
  • 5 replies
  • 0 Likes

GlobalProtect client fails to connect to Gateway when set to SAML authentication

I have spent the last 2 days bashing my head on his without success... We are changing an existing GP VPN from internal Radius authentication (plus other methods) to an external Azure SAML authentication. I have setup a SAML Server Profile and an Authentication Profile, set the GP Gateway to user SAML authentication, but the GP client always han...

User has new password in AD, but GlobalProtect still authenticates with the old password (new password fails).

When our users change their AD password, they immediately will lock & unlock Windows to make sure the new password took, and that what they think they changed it to, is exactly what they changed it to. They also have been told to sign out of GlobalProtect and sign back in, so that GlobalProtect will be configured to use the new creds going ...

jrauman by L2 Linker
  • 4357 Views
  • 2 replies
  • 0 Likes

Default-browser setting overwritten

Our company uses GlobalProtect and I have this working on Linux. They recently made a change to the settings so that the <default-browser>yes</default-browser> has been removed from pangps.xml. This has caused some upset as the built-in browser appears to have some issues with our 2-factor authentication. I assumed that I could th...

Resolved! Portal and Gateway PanOS versions

As our PA220s which are running our GP Portals are unable to be updated beyond 10.2, but our GP Gateways will need to be updated at some point, I was wanting to ask if there are any issues with the 2 functions being on differing PanOS versions? And if the answer is sort of, is there a limit to the difference that is acceptable?

Global Protect DNS Issue

Hi Team, We are facing a weird issue with GP. Random users connecting to GP is being assigned with the Loopback IP(127.0.0.1) as DNS. They have to go to settings and then remove the loopback IP from the DNS only then it starts working. This is not for all users. Random users are facing this issue. Anyone faced this kind of issue? or any input on...

Comp certificate expired, how to allow users to log in

Hi, Few of my users have not connected to GP (and to AD) for extended period of time and their computer certificate has expired. They are remote, so coming to office would be problematic - continent-size problematic 🙂 I was under impression, that when i change Authentication profile from "Require username AND device cert" to "Require username...

R.Tryba by L1 Bithead
  • 4091 Views
  • 5 replies
  • 0 Likes
  • 2078 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks