A customer tells me that he has vpn connection intermittency in several of his sites, how can I trace the problem or what can it be due to?
I'm in the process of configuring Duo SSO for GlobalProtect authentication. It's all working great when logging in through the GP application. However, both the Duo and Entra how-to guides mention that you can initiate the login through their portal (IdP or SP initiated login). However, when I try it though the Duo Central portal, it just logs m...
Pleas help me about setup GP app for Surface Pro 9 SQ3 - ARM64. GP app notify The Service is not running!
I'm a consultant working for multiple companies that use Global Protect. At the moment during the day I have to disconnect and connect multiple times a day to these companies and each time I do this I have to re-enter the user/password then click connect to invoke 2F auth. Can I some how enter the user/password for a given portal and have it a...
Hello, What's the best way to create a HIP check to enforce current versions of MacOS? Prisma Access / Strata UI has some built in version values but it only goes up to MacOS 14.1. We're looking to create a rule to enforce current 13.x and 14.x releases which in this case would be: MacOS 13.6.6 MacOS 14.4.1
I am trying to remove remote users from Global Protect using XML API. I have attempted to remove a user from both the Gateway and the Portal but I have not been successful. This is the command I am using to remove the user from the Gateway: (Sections in bold are the changes I made to the XML API) https://Firewall_Name/api/?type=op&cmd=<...
Hello, Is it possible to connect to GlobalProtect using EAP-TTLS with PAP authentication? I am using OneGate as our RADIUS server.
Hi, I have number of users that needs to sign out from their account and connect GP with their second account. The options of sign out or logoff for user is not showing at GP client. we are using client 5.2.11 and did also testing with 5.2.12 and 6.0.4c26 (which causing strange symbols instead of English). all the setting are in place: Allow...
We have been having unknown person(s) been attacking our firewall for the past few weeks with a Dictionary Attack. They even went the length of finding one of out IT staff on Linkedin and try to get his Globalprotect Login. Luckily they have not been able to gain access, but I want to create a rule that will autoblocks any attempts that do n...
Hey guys, As the title suggests; is it possible to use an EDL in split-tunnel config? I'd like to be able to use Minemeld to grab Office 365 IPs & URLs. Thanks in advance
Hi Expert , I found issue about not able to detect hip info serial number for mobile device is showing host id instead I'm not sure about is should be show like this kb : How to Check the Information for a Mobile Device in the GP-100 - Knowledge Base - Palo Alto Networks but show just host id and on s/n tab show value of host id as well ...
Greetings all, we are migrating from Checkpoint to Palo Alto and will be moving to the GlobalProtect Solution for our remote employees. I have never deployed GlobalProtect and wanted to see if there were any recommendations on where to start and if you have any checklists for deploying the devices that you could share. I do know that initall...
Hello Team, Recently, we faced the GP issue, and we found it was due to the IP pool being exceeded. We want to setup alert monitoring, so if the pool gets 90% of its IP's, then we should get an alert so we can extend the IP pool's. Please provide the link to setup monitoring for the above requirements only. Please provide a link with an exampl...
Hello, We have configured Global Protect on VM-300. We are in the testing phase and would like to test replacing Ivanti Connect Secure with Global Protect. Ivanti Connect Secure uses realm and user role mapping to realm to all access to different resources. We are looking for documentation that provides instructions that can help migrate from Iv...
Our normal firewall guy is out on extended leave starting last Friday, and I am pretty much a neophyte with this system. Here's what I've got. We've got 2 portals as follows portalA.ourdomain.com and portalB.ourdomain.com. They were both working fine until this morning when portalB stopped authenticating users. It fails whether you use the V...
BPry
on:
Semi-Disable Global Protect on Mac
reaper
on:
auth override cookie in Globalprotect
