MAC Client with SAML fails for any version newer than 4.0.8

Hello. We run Global Protect VPN on a Palo 850 with SAML from OKTA and certificates from VMWare Airwatch. For any version of GP Client on the MAC newer than 4.0.8 the login fails. It does not prompt to select the certificate or for username and passw

GP Debug( 102): connect failed with 180 seconds timeout. Internal Detection

When using Internal Detection and user starts up his workstation while connected internally (In the LAN), the agent first tries to reach the EXTERNAL portal to check for new configuration.

If the External Portal is not reachable, it will wait for 180

Global Protect Silent App Deployment

Hi Guys,

I have implemented global protect with pre-logon with device certs. It is working as expected. I have customized GP msi to add the portal name and to install silently. However it looks like users need to add their username/password for the f

GlobalProtect Reporting Port Exhaustion on Win 10?

Anyone else seeing a lot of this lately?  I've been researching this over and over again for about 2 weeks and all signs point to Windows being the culrpit, but the only time we ever see this happen is when users are connect to GlobalProtect.

Here's

VPN Access for Remote Desktop

Hello All,

My organization is using Globalprotect VPN to access RD of office PCs from home. I have a slightly different requirement. I want to access my personal laptop from office. What I tried to do was connected VPN on my laptop and tried Windows

Additional global protect portal and gateway

Hi

We have a working user-logon always on GP setup using certificates to authenticate, but we would like to make some changes and go to prelogon, but with most of the company working remotely we thought we would play it safe and setup a second GP ins

GlobalProtect adding machine cert authentication

Hi,

We are currently using GlobalProtect with an auth profile that uses LDAP and DUO proxy. We now want to expand this setup with needing a machine certificate to be allowed to log on to portal/gateway so only company owned computers can log in.

We c

Piggyback off Shibboleth SP for GlobalProtect portal/gateway Authentication

Hello,

We have a shibboleth SP setup on our web server which has a discovery service built-in, so that users can authenticate against a number of different endpoints. Is there any way to carry over that configuration to a palo alto SAML authenticatio

Global Protect Portal Configuration with ISP DHCP

Hi!

I'm trying to set up Global Protect but the ISP gives us a DHCP address. Is there a way to set this up with a DHCP address?

Global Protect Release Notes link leads to blank page

Any one else having this issue? The last three notifications I've received regarding a new version of Global Protect leads to a blank web page.

Global Protect Report to show active user

Global Protect usage is increasing.

i would like to know how to get a report about active user every day.

1) report about maximum active user every day about 1 week.

2) report about username login today.

3) report about number of OS version  every day ab

Linux CLI globalprotect connect. Error: No Network Connectivity

I am trying to connect to my university's VPN. I have installed the CLI version of globalprotect on my laptop running Arch Linux. The university pointed me to a location to download a tarball with 5.1.1.0-17 debian packages. I believe I have successf

Random UDP 137 to Public IP's after connecting global protect

After installing and connecting to Global Protect, FW policy logs are showing large amounts of UDP 137 getting blocking from Global Protect clients going to many random Public IP's.  Any idea what would cause this?  Public IP's have been MS, AWS, Goo

Issuing DHCP IPs for GlobalProtect users

Hello Guys,

As the title suggests is it possible to issue DHCP IPs for GlobalProtect users? We are expecting to issue GP IP addresses from the Active Directory. Is this scenario possible?