Global Protect Always on with Multi-Factor Authentication

Hi All,

I just want to ask some question regarding behaviors of Global Protect Always on(user logon) with Multi-Factor Authentication. Does it will generate only one time OTP when we first time login Global Protect or it will keep on asking everyti

Global Protect credential error for mutual domain but seperate active directory

Hi,

We have mutual domain with our other site, but seperate Active Directories. When a consultant tries to connect us just after connecting to other site, GP tries to connect with other site's username (ismailt). His username in our AD is ismail.te

Global Protect for Google Chrome Client connects successfully but unable to connect to the internet- assigned IP 100.115.92.2

Our Google Chrome client are not able to access any network resources including the internet after connecting to Global Protect app. I noticed that the following IP address was assigned 100.115.92.2 as opposed to the expected IP address from the conf

Error Message - Global Protect Encountered an improper argument

Anyone seen this pop up before?  We're lost on why it's happening.

I've checked all logs in Windows Event Viewer and can find nothing.

Thanks

Ken

Has the inactivity logout changed?

I was reading about disconnect at idle being removed and just inactivity logout will be used in 10.1. In the past this never really worked as the tunnel was never truly "idle" unless the end user lost their internet connection or network port was pow

Enforce GlobalProtect Connection For Network Access and Local Network Access

Hi

I have enabled "Enforce GlobalProtect Connection For Network Access" on an "Always On" VPN and it works as expected but I can no longer access the Local Network for Printing even though "No Direct Access to Local Network" is disabled. I am assumin

GlobalProtect idle timeout

Hello all,

I would like to know your feedback with some requirements which I have to configure a GlobalProtect VPN to be used by mobile devices:

1- Split tunneling: Configured and working properly, mobile devices using this VPN are sending throug

GlobalProtect Slowness

Hello,

I recently started a new job and have been thrown right into the fire.  Users are complaining about very slow connections from globalprotect.  They get speed tests between 3mbps - 20mbps.  Internet speed from ISP is 500Mbps.  When I attempt fr

Several client authentication in a Gateway

Hi,

we have a PA-850 running 10.1.8 firmware.

We currently use GlobalProtect VPN using Symantec VIP authentication via RADIUS.

We want to progressively migrate the authentication to Azure AD MFA (already synced with all accounts). I was wondering if

Globalrptect VPN Portal Agen COnfiguration

Hi All,

i am trying to config multiple authentication rules in Portal Agent config. what is the priority on the list when we have mulitple user groups?

i am trying to create multiple user groups with different VPN Client attributes. 

Global Protect multiple gateway setup

I have an existing setup of Global protect Portal and gateway on first Firewall, I have created a New gateway on another Firewall and added that gateway to the portal of first firewall under Agent---> External gateway.

When I am connecting to Global

GlobalProtect Qualys: 150307 External Service interaction via Host Header Injection

Has anyone scanned their GlobalProtect Portals/Gateways with a Qualys WAS scanner?  With GP running version 10.0.x, it's reporting back QID 150307 External Service interaction via Host Header Injection.  

The scanner injects a special FQDN in the Hos