Is there an easy way to schedule GlobalProtect users to disconnect at a specific time of day? Not looking for idle session timeout.
I install Global Protect but there isn't a Global Protect Connect to use. Nothing is installed except log C:\Program Files\Palo Alto Networks\GlobalProtect directory The registry is also wanting. Please see all attach files and screenshots. Look for some guidance. Thank You
Dear All, Is it possible to use Global Protect to prevent users who have already logged in via RDP from jumping to or connecting to another server? Thanks
HelloI am reviewing that GlobalProtect (vpn.xxxxxx.com and remote.xxxxxx.com) are vulnerable as they do not have a frame-ancestors response header configured. I want to configure a frame-ancestors response header with a list specifying which URLs can embed site elements; or use the 'none' keyword to deny any site from embedding site content; or ...
Hello, Looking to upgrade our GP from version 6.0.5 to 6.0.8. Is there a step-by-step reference I can use to help me in the upgrade process? Thank you in advance.
Hello,To make the next update to GP as easy as possible for users, we would like to see an automatic reconnect. At the moment, the actual upgrade works fine to 5.1.9, but requires manual intervention at the end by clicking on the "connect" button after the update is complete and the VPN disconnected. Could this be related to cookies? Currentl...
Hello team We have already hidden the global protect pages so that our users can only access through the client, however, we have detected that when we type the ULR or IP in a browser there is an automatic redirect that adds /global-protect/login.esp and we do not want this to be so, because we do not want that from the outside can be seen that ...
When I try using GlobalProtect on a ubuntu based machine (I tried with two different computers, and two different distributions of ubuntu) as soon, as it displays de message Connected, the Wireles network interface disconnects and connects constantly to whatever network it was connected Reviewing the Ifconfig.txt file resultant from collecting l...
Hello,I want to make an integration of Palo Alto and Cisco ISE in these terms:1. Global Protect users can be authenticated using Cisco ISE2. There are some dynamic ACLs that define access rights for certain group of users, so the customer would like to continue using these ACLs for Global Protect usersSo my question is, ca this integration be ma...
Hi All PA-VM running 11.0.02 Global Protect 6.2.0 After some advise/suggestions We are rolling out Global Protect for the first time and getting some strange results Portal and Gateway Configured to use Azure SAML in addition to this I have followed this article to try and make the whole process simple for users Seamless SAML Authenticatio...
https://security.paloaltonetworks.com/CVE-2024-3661 The advisory states Prisma Access is unaffected by the TunnelVision vulnerability. However, to use Prisma Access, it must be done through the GlobalProtect agent itself. I looked at my GlobalProtect agent configuration and we do have the affected settings but we do not use GlobalProtect its...
Hi, We're looking at deploying GlobalProtect to 1000+ iOS devices and wondered if there was anyone out there that could share their experiences and provide some insights. Using our MDM tool (Meraki and Airwatch), I'd like to push out the GlobalProtect iOS app, configure VPN address, and apply any approval/config to iOS to allow this app/VPN ...
We're trying to setup Clientless VPN for the first time and we've run into an issue where the portal site only shows the top application in the config stack. GlobalProtect > Portals > Clientless VPN > Applications. They all seem to work when you manually enter the app URL in the menu. We're running PanOS 10.2.8.-h3 and GlobalProte...
I am testing client auth using certificates and the certificate is not being retrieved from the User store. It's Windows 11. The PanGPA.log file shows this error: (P23516-T9764)Debug(2744): 06/08/24 11:07:10:562 box return Valid client certificate is required, remove cache and close all handle now(P23516-T9764)Debug(5570): 06/08/24 11:07:10:56...
While troubleshooting a failing GlobalProtect update on my own machine, I checked the DNS requests made by the Global Protect updater. And noticed that it's not making type A requests, but instead uses TYPE65 (aka HTTPS ordraft spec RFC 9460) requests. My internal DNS server don't have the option of hosting this type of record. The update fails ...
BPry
on:
MacOSX Tahoe 26.4.1 (25E253) / Global Protect 6.3.3: Network is unreachable
| Subject | Likes |
|---|---|
| 3 Likes | |
| 2 Likes | |
| 1 Like | |
| 1 Like | |
| 1 Like |
| User | Likes Count |
|---|---|
| 5 | |
| 3 | |
| 2 | |
| 1 | |
| 1 |
