This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Massive update of GlobalProtecr agents

Best regard Equipment Currently in the company we are with the task of updating the GP agent to a more recent version, however, we do not know how much impact there may be on end clients if we update the agent, since they will understand that there are many users. Having said the above, I would like you to clarify the following information for m...

aalfaro by L2 Linker
  • 1733 Views
  • 3 replies
  • 0 Likes

Can HIP domain use wildcard characters?

May I ask HIP domain can use wildcard characters or not? (Like diagram below) I read an article that OS cannot use *, but I am not sure whether domain can use wildcard characters or not(just like URL wildcard) https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000oM79CAE Thank you.

WilsonHuang_0-1710749217423.png

Get a defined target IP Adress and Subnet via GlobalProtect (PA-460)

  I have a target system that I need to access via WebUI. The system is reachable via its IP address 192.168.255.129 with a /24 (255.255.255.0) subnet. Furthermore the system expects a client IP address of 192.168.255.130, any other IP address will be rejected. The target system is a "proprietary blackbox", which means these settings cannot be c...

Bild (3).png
Bild (2).png
SaArlt by L1 Bithead
  • 6609 Views
  • 4 replies
  • 0 Likes

Use HIPS to assign Gateway IP Address for external clients

Hi, I am looking at how to assign different IP Pool addresses to clients based on a HIPS check. We are currently achieving this by assigning a different IP Pool to users based on user group membership of an Active Directory group. When the client authenticates with the Gateway, it receives a Pre-logon IP Address - lets call this an IP Addres...

VM series Firewall Global protect IP unreachable after rebooting

Hi All, I'm doing POC on GlobalProtect for one of our customer. As our enviorment is VM series firewall on AWS, we stopped the VM in non-busness hour for costsaving purpose of AWS cloud. But very next day, the Globalprotect servicce IP is not reachable,it usually takes around 30 to 40 mins or even sometime 1 hour to the service ip to become re...

Configure TOTP (Google Authenticator) for GlobalProtect

I have looked at the different support documents and previous discussions but have not gotten much wiser. I need to have a handful of users connect to GlobalProtect with TOTP as the second authentication factor. Since the number of users are so low, they can either live on our LDAP service (preferred) or as local users. The TOTP is to be verif...

royolsen by L0 Member
  • 44994 Views
  • 11 replies
  • 0 Likes

Way to dual-boot MacOS without violating encryption requirements for GlobalProtect?

I'm using a 27" i9 iMac running MacOS Monterey 12.7.3 with GlobalProtect VPN 5.2.12–26.In order to connect with my organization's VPN, GlobalProtect requires my drive be fully encrypted. Normally that's not an issue, as my default is to do so, with FileVault.However, a few months ago I was considering upgrading to Sonoma, and wanted to first te...

Global Protect Encryption Issue_redacted_flat.png
byte99 by L0 Member
  • 1777 Views
  • 0 replies
  • 0 Likes

VPN certificate error, Android versions

Please, I have a problem with the connection through GlobalProtect VPN, for cell phones or tablets with Android version 12 and 13, the error is the following:"There is a problem with the security certificate. The identity xxxx.xxxx.xxxx.xxxx cannot be verified. The portal certificate is not signed by a trusted certificate authority." With other ...

Unstable connection Ubuntu 22.04 GP UI version 6.1.1.0-49

Some users experience problems with the connection - the VPN looks connected but every request ends with a connection timeout until the VPN is restarted. The VPN looks connected but every request ends with a connection timeout until the VPN connection is restarted and the problem repeats after a while. I already got "globalprotect collect-log"...

Witten by L0 Member
  • 1685 Views
  • 1 replies
  • 1 Likes

Global Protect client unable to browse network shares

I have two windows endpoints that, once the user logs on to Global Protect, are unable to browse network shares. The connection looks normal and the traffic logs do not show any drops or denies. We have tested logging on as a different user, but they are also unable to browse network shares. I have temporarily configured both endpoints to conn...

Why can I still access the company's internal network after the GP client is disconnected?

After the client terminates the connection of GPAgent, ipconfig shows that the IP address before the disconnection is still obtained (the address allocated in the correct IP address pool). At the same time, it is still possible to communicate with the intranet server (the result of ping).It gives me the feeling that although the display connecti...

Lyman.Li by L0 Member
  • 2828 Views
  • 4 replies
  • 0 Likes

GlobalProtect | External Gateway | SAML | Reconnect Issue

Hello,I implementing GlobalProtect as our main VPN Solution and got it working so far. When I stress-test the GlobalProtect Client (imitating a stressed busy user who clicks on reconnect / "erneut verbinden in a short time frame) I get "no acces to site / kein zugriff auf seite" error in the integrated browser. I have to close the "kein zugriff ...

BilertJulian_systemo_0-1708177392123.png
BilertJulian_systemo_2-1708177910134.png
BilertJulian_systemo_0-1708182174749.png
BilertJulian_systemo_1-1708182234659.png
  • 2069 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks