[RFC5746] issue with ssl decryption: openssl3.0 unsafe legacy renegotiation disabled

Since I upgraded to the lastest fedora, all of my python/ansible script failed when they are decrypted by our palo alto ssl outbound policy.

After some diging, fedora 35 was using openssl 1.1.1 and fedora 36 switched to openssl 3.0: https://fedorap

Global Protect SAML Azure timeout

Hi,

I have Global Protect setup to run authentication against Azure SAML.

The users login with their credentials and are prompted with their MFA.

The thing is that there seems to be a timeout timer for this in Global Protect?

I tested that if the

Internal host detection issue

Hello, 

Current setup is a 440 running 10.1.10-h2.

Global Protect version is 6.1.2

I have double and triple checked that it's not a reverse dns issue, following this article:

GlobalProtect app fails to detect Internal Network with Interna... - Know

Globalprotect: Always on doesn't always work after comming out of standby requires refresh.

Hi,  

I have a couple of question about Global Protect Always on.     At this moment my portal and gateway are using SAML authentication and my client is set to Always On and Internal portal detection.

1.  What is best practice around authenticat

Error 128

My Customer facing Error 128 on globalprotect app

Can anyone help me to fix this.

Thank you.

Updating new Poral name (GW) to all existing Global Protect users

Hi,

I already have almost 1500 users using Global Protect VPN Client.
Currently our users are using gateway portal name (Eg :123.vpn.com.)

We have implemented a new cloud VPN gateway (eg abcd.cloudvpn.com) and now we want all users to use the new cloud

Globalprotect not working on Lenovo X13s

HI,

I am trying to use the company-provided GlobalProtect vpn app (version 5.2.11-10) to connect to our VPN. My work laptop is a Lenovo X13s running the Snapdragon (TM) 8cx Gen 3 @ 3.0 GHz 3.00 GHz ARM-based processor.

I set up the VPN with the r

Global Protect MFA Looping

Hello, I am facing a weird issue with Global Protect where after a user authenticates via Okta Radius to the Portal and enters their MFA SMS Key the GP Agent asks for the user to enter the MFA SMS Key again with the response of ('A message was sent o

GP example script running as admin

Hi, according to the doc, to run a pre (or post) vpn script can be run as admin using the following:

context admin | user

I haven't been able to get this working, so I'm guessing I have the variables all wrong. Can someone give me an example of how t

GlobalProtect log stage and event

My customer was a Brute force attacked on last week. Today they see GlobalProtect log is from another country (we are in TH) and wonder is this abnormal activity or not.

and what is the meaning of "before-login" on stage column and "portal-prelogin"

Group-based authorization for Azure SAML users

We now have finished the integration of GlobalProtect with Azure SAML, the authentication process is running properly without any issue. However, because of different types of users: staff, vendor and admin, which required more precise permission man

Internet not working after conncted to GlobalProtect. But it is happening only for a particular network provider.

The Internet does not work once the user connects to two particular network providers. The Global Protect is in the pre-logon method and enforced connection. When disconnected from GP with an admin password, the Internet is working.

With a working net

Anyone Experiencing GP Issues on Frontier Fios?

We've been receiving multiple reports of issues with Frontier Fios and GlobalProtect (Prisma Cloud) for the past two days. This seems to be isolated to the Southern California region. All other ISPs both in Southern California and elsewhere are able