problem with MS Edge with SAML auth for Global Protect

We have been using SAML authentication with the user default browser for Global Protect for some time now. Within the past month it seems that users with MS Edge as the default browser have been having a lot of trouble authenticating. The SAML comple

GlobalProtect Pre-Logon before user logs in.

we have been using pre-logon for some time and are generally having very few issues.

We now need Pre-Logon to work on newly built laptops using the "Extend Key Usage OID" setting in the GP app.

It works fine but we need it set for when a user first

Clientless VPN Portal Brute Forcing

Hi all, 

I have an issue with a single/multiple threat actors attempting to brute force or clientless vpn portal. They are switching IP's with each attempt and they occur 3-7 time per hour. They use the most ridiculous dictionaries for user names b

GlobalProtect SAML Azure AD Entera ID and cookies

Separate IP pool config for two departments when connecting to global protect

 Is it possible to assign two different IP pools for two departments on one gateway, when the users connect to Global Protect VPN.?

Note: We don't have On-Prem ldap server to config User identification & group-mapping on firewall. We are using Azure

User having issues accessing internet after connecting to Global Protect -- Userid

Hi Team

We are seeing an issue where only 1 user is having issues when going to any websites over Global Protect. DNS lookup completes and the built-in Apps like Outlook, teams work over GP with no issues. The user is able to successfully authentic

GlobalProtect and Smartcard pin caching

Good morning,

I am hoping that someone might have some insight as to GP's pin caching. We have a smartcard portal that validates both pin and username/password but within certain time frames you can reconnect without the pin and just the username/p

Global Protect on Apple M1 silicon running Linux

Hello everyone.

Are there any plans for supporting Apple ARM M1 silicon running Linux instead of MacOS?

RDP disconnects GlobalProtect session

We have our laptops configured for pre-logon with machine certs, and SSO for the user based tunnel.  If we RDP to a laptop that is sitting at the logon screen with the machine tunnel up, RDP works fine.  However, if we RDP to a laptop that is already

Global Protect license to enable MFA

Do we need a Global Protect VPN license to enable MFA ( Multi-Factor authentication) for SMAL Authentication.

PA-3020

TIA.   

Blocking by Country Security Policy

I've added several countries to a Security Policy that restricts access based on Location - however, I'm still seeing login attempts from those countries. What other steps can I take to ensure we don't see anymore attempts from the countries already

How to detect if the VPN connection is fully ready?

I have a logon script (PowerShell) that captures details and saves them to a file on a network share. This works for users on the network but those who are remotely working are using the GP VPN and the file is not getting saved. The problem seems to