This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

GlobalProtect Deployment For Dummies

Greetings all, we are migrating from Checkpoint to Palo Alto and will be moving to the GlobalProtect Solution for our remote employees. I have never deployed GlobalProtect and wanted to see if there were any recommendations on where to start and if you have any checklists for deploying the devices that you could share. I do know that initall...

Need monitoring alert for ip pool exhuasted

Hello Team, Recently, we faced the GP issue, and we found it was due to the IP pool being exceeded. We want to setup alert monitoring, so if the pool gets 90% of its IP's, then we should get an alert so we can extend the IP pool's. Please provide the link to setup monitoring for the above requirements only. Please provide a link with an exampl...

Global Protect Configuration

Hello, We have configured Global Protect on VM-300. We are in the testing phase and would like to test replacing Ivanti Connect Secure with Global Protect. Ivanti Connect Secure uses realm and user role mapping to realm to all access to different resources. We are looking for documentation that provides instructions that can help migrate from Iv...

GlobelProtect portal started failing authentications, was fine this morning

Our normal firewall guy is out on extended leave starting last Friday, and I am pretty much a neophyte with this system. Here's what I've got. We've got 2 portals as follows portalA.ourdomain.com and portalB.ourdomain.com. They were both working fine until this morning when portalB stopped authenticating users. It fails whether you use the V...

Argentus by L0 Member
  • 983 Views
  • 0 replies
  • 0 Likes

What does it mean Stage and Event GlobalProtect Fields?

Dear, we are doing a large and hard troubleshooting to forensic analysis into our company, so we need know more information about the "GlobalProtect Stages and Events columns Logs Monitor".Example: what it means the stages: before-login, tunnel, host-info, login and configuration. What it means the events: gateway-tunnel-latency, gateway-logout,...

rennersf by L0 Member
  • 7789 Views
  • 5 replies
  • 0 Likes

GP SAML authentication with multiple client configurations in gatway

Hi Everyone, I'm trying to allow to separate entities to login to an external GP gateway using the same auth profile. In the gateway configuration under agent, I have two configs one for each entity with specific routes for each. When I have one of the configs set to any user on any OS this works, but if I try to define which users get which...

GP HIP Profile Applied to Security Policy with Multiple Zones

Hi everyone! First LIVE post, hoping to learn about how HIP profiles function when applied to security policies. I have a zone created for my Global Protect VPN users, I want to apply a HIP Profile that checks if the computer is domain joined and denies access to the gateway if the check fails. My understanding is that the HIP profile need...

Global protect self uninstall on mac

Hi all, I have a peculiar problem that I would appreciate help with. Myself and the IT team(me being part of the security team) are piloting the GP with Prisma sase as the vpn of choice for our organization. We have two endpoints with it - a mac and a windows. now everything works fine, but for some reason after about a week from installation th...

AZURE VM Configure GP with certificate

I have an HA pair of VM series Palo Alto Firewalls deployed in Azure. How do I associate the public IP to a certificate on the PA? Are there any instructions on how to do this available? Do I add the public IP or? I cant use dhcp as its an HA config with floating IPS.

Carleton by L3 Networker
  • 763 Views
  • 0 replies
  • 0 Likes

Global Protect Disconnects Frequently

Hello, I am running Palo Alto in my network and few team members connects to Global Protect VPN for different partner. As soon as they connect, VPN keeps disconnecting frequently. If same members connect VPN from home or with hotspot, it works perfectly fine without any drop. Can any one advise how to troubleshoot this issue?I found a known is...

PiyushBassi_0-1710934167760.png

How to Internalize Palo Alto Global Protect?

VPN connection - Sign in and log in from outside - You cannot log in when logging in to your internal network. /vpn is mapped as public, so - How can I separate the GP portal into private/public? (FQDN) Internal authentication - Is the portal externally/internally certified? - When connected to an internal network, users have an indepen...

Jaehyun by L0 Member
  • 684 Views
  • 0 replies
  • 0 Likes

Global Protect Azure MFA SAML FIDO Key

Hi, I configured Global Protect with Azure MFA (SAML).I have set this up as described here: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g0000008U48CAE Unfortunately I can´t see the FIDO Key in the Login-mask. The other authentification methods are displayed. Since some users have only one FIDO key the question would be if ...

GlobalProtect Connection Issues in PAN-OS 10.2.7-h3

Hello Friends, What troubleshooting steps can I take to address the GlobalProtect connectivity issues, including the "Your GlobalProtect session has been disconnected due to network connectivity issues or session timeouts" notification and the SSL VPN GlobalProtect connected status with 0 bytes traffic after upgrading PAN-OS to version 10.2.7-h3...

fatihs20 by L0 Member
  • 27530 Views
  • 23 replies
  • 2 Likes
  • 2069 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks