Ping scan returning what looks like a PANGP MAC address

Hi - we're all working remotely now - so I've connected GlobalProtect to reach resources on our domain. I was a little confused when I ran a ping scan on a particular subnet and all the devices returned the same MAC address along with the IP address,

SAML Login Issue with Token-signing Certificate

We've run into an issue this morning where users are no longer able to authenticate via our ADFS (SAML) portal.
This is the error users see:

We opened a support ticket with Palo Alto, and this was the response from support engineer:

Hello team,

I fou

Global Protect DHCP Pool

Does Global Protect typically use one DHCP pool for multiple profiles? What is best practices?

Global Protect - Redirection via Arbitrary Host Header Manipulation

Having ran a PCI DSS compliance scan it has come back that our Global Protect VPN setup is flagged as a failing vulnerability for Redirection via Arbitrary Host Header Manipulation.

We have it setup to redirect to azure to authenticate account deta

Need Guidance on Updating Google SAML Cert

"Issued terminate to UI but still running."

Anyone know what could be going on here:

Using Hash to Bring over User VPN Passwords

Hello Everyone, I am setting up a new PA460 and have a decent amount of users I set up. I have all the users set up and gave them new passwords.

I was wondering, (on my current device) if I take the Password Hash from the user section in the Firewa

GlobalProtect Multi Factor Authentication

I'm in the process of setting up GlobalProtect for the first time.  I have two authentication methods set up for the portal, ldap and radius.  My understanding is that with this configuration both authentication methods must succeed in order for the

Discussions

Hi Team,

Good day to you,

We have one customer he is facing issue with 

After connecting global protect unable to access internal lan server (RDP he is trying to acess) . he is created one policy (remote access to LAN )  once i checked traffic logs

Updating Google SAML Cert

We use Google SAML for our GP 2FA and the cert is getting ready to expire. I am needing some direction on updating the cert. For other products all I usually need to do in import the meta data and change the cert on the google admin side. I am  not s

GlobalProtect Issues with Hotspot Users

• Two different users reported problems when connecting to GlobalProtect when using an iPhone as a hotspot.  The users can connect to GP, but are then unable to use HTTPS or ssh to connect to internal assets via the VPN.  If the user uses the same lap

using Azure SSO for GP fails when password change dialog must be shown to user

Useing Azure SSO with Global Protect and MFA for sign in, there comes times when users must authenticate however their password must be changed, say on first login, or after X days etc. The page that displays the login etc seems to not be able to red

Using PAN as a DHCP Server - MAC Addresses are Case Sensitive

Hi everyone,

I'm having an issue trying to tell our account representative that PAN should treat upper-case or lower-case (or even mixed) MAC addresses as one entry.  I say this because I had an entry in our PAN DHCP Server all in lower-case (enter