This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Resolved! GlobalProtect does not create gpd0 interface on installation

When I try using GlobalProtect on a ubuntu based machine (I tried with two different computers, and two different distributions of ubuntu) as soon, as it displays de message Connected, the Wireles network interface disconnects and connects constantly to whatever network it was connected Reviewing the Ifconfig.txt file resultant from collecting l...

Global Protect and ISE integration

Hello,I want to make an integration of Palo Alto and Cisco ISE in these terms:1. Global Protect users can be authenticated using Cisco ISE2. There are some dynamic ACLs that define access rights for certain group of users, so the customer would like to continue using these ACLs for Global Protect usersSo my question is, ca this integration be ma...

Global Protect and Azure SAML

Hi All PA-VM running 11.0.02 Global Protect 6.2.0 After some advise/suggestions We are rolling out Global Protect for the first time and getting some strange results Portal and Gateway Configured to use Azure SAML in addition to this I have followed this article to try and make the whole process simple for users Seamless SAML Authenticatio...

PBassett by L0 Member
  • 2795 Views
  • 1 replies
  • 0 Likes

TunnelVision Vulnerability on Prisma Access via GlobalProtect Agent?

https://security.paloaltonetworks.com/CVE-2024-3661 The advisory states Prisma Access is unaffected by the TunnelVision vulnerability. However, to use Prisma Access, it must be done through the GlobalProtect agent itself. I looked at my GlobalProtect agent configuration and we do have the affected settings but we do not use GlobalProtect its...

hgosal by L0 Member
  • 816 Views
  • 0 replies
  • 0 Likes

Deploying GlobalProtect to iOS devices via (Airwatch, Meraki, MDM)

Hi, We're looking at deploying GlobalProtect to 1000+ iOS devices and wondered if there was anyone out there that could share their experiences and provide some insights. Using our MDM tool (Meraki and Airwatch), I'd like to push out the GlobalProtect iOS app, configure VPN address, and apply any approval/config to iOS to allow this app/VPN ...

Clientless VPN only shows the top application in the stack

We're trying to setup Clientless VPN for the first time and we've run into an issue where the portal site only shows the top application in the config stack. GlobalProtect > Portals > Clientless VPN > Applications. They all seem to work when you manually enter the app URL in the menu. We're running PanOS 10.2.8.-h3 and GlobalProte...

Client cert usage check failed

I am testing client auth using certificates and the certificate is not being retrieved from the User store. It's Windows 11. The PanGPA.log file shows this error: (P23516-T9764)Debug(2744): 06/08/24 11:07:10:562 box return Valid client certificate is required, remove cache and close all handle now(P23516-T9764)Debug(5570): 06/08/24 11:07:10:56...

BBartik by L2 Linker
  • 1529 Views
  • 1 replies
  • 0 Likes

Global Protect on MacOS (TYPE65 dns queries)

While troubleshooting a failing GlobalProtect update on my own machine, I checked the DNS requests made by the Global Protect updater. And noticed that it's not making type A requests, but instead uses TYPE65 (aka HTTPS ordraft spec RFC 9460) requests. My internal DNS server don't have the option of hosting this type of record. The update fails ...

dmgeurts by L2 Linker
  • 1570 Views
  • 0 replies
  • 0 Likes

Resolved! GlobalProtect VPN Issues

Hi. Can someone please help me? Thank you in advance. We are currently experiencing issues with a GlobalProtect VPN setup, it is working for users located in Australia but not in the Philippines, we have set it to allow connections from the Philippines and we're able to get to the GlobalProtect web portal to download the VPN but the VPN itself...

Global Protect Authentication Loop with Azure unable to connect but authenticate completes.

Hello Everyone, Has anyone else been facing issues connecting via GP VPN lately? When we try to connect via the agent. It prompts to authenticate via edge. Once that is complete and 2fa is verified on the webpage it states authentication complete and it opens another edge tab to authenticate again and it happens constantly. Steps Taken: ...

Udit_Das by L0 Member
  • 2438 Views
  • 1 replies
  • 0 Likes

After Endpoint Traffic Policy Enforcement, client can not be access microsoft login portal for smal auth.

Hello Everyone, I build a gp authenticaiton for azure ad saml auth in prisma access, and it works normally. After enable "Endpoint Traffic Policy Enforcement", and missing add lists of enforcer exception list, and then finished push jobs, client can not access microsoft login portal for smal auth, and can not access anywhere. Anyone knows...

GlobalProtect doesn't upgrade transparently.

In Prisma Access Mobile User, the user GP version was distributed as 6.2.0. However, due to an issue, I needed to upgrade to 6.2.3, so I set upgrade globalprotect to allow transparently in the app settings. However, there was no change for 6.2.0 users, so I installed 6.1.4 as a test and waited, and it was automatically upgraded to 6.2.3 within 5...

  • 2062 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks