VPN Attempts from Rotating IPs and Generic Usernames

Hello all,

For several weeks, I have been getting many VPN login attempts from different IPs trying to login using generic usernames, like "guest", "support", "admin", etc.

Is this normal? Is there anything that I can do to stop this from happeni

Unable to upgrade GP on macos

Trying to upgrade GP to 6.0.5 from 6.0.4-26. Running macOS 13.4.1 (c). I've read the release notes, tried changing some system settings, Googled, and I'm not having any luck. Any guidance would be appreciated. See attached screenshot.  TIA

Automatic deployment of GlobalProtect for Mac via Intune

My Company uses Intune for Mac management, and we are trying to automate as many app deployments as we can. Right now, I am hung up on GlobalProtect. I have already created a line-of-business app using the .pkg provided by Paloalto for GlobalProtect.

Problem with Certificate install on Apple Silicon Laptops and the workaround I found.

Good Morning Folks,

I've run into an interesting issue. My ISP forced a change to the static IP for one of my sites with a PA-220 running 10.2.3-h2. This resulted in changes to both my public IP and my GP portal IP.  When I finished changing them,

Global Protect - Display Issue

Hi there,

I have a user who's getting this really weird display issue with Global Protect - screenshot attached.

Troubleshooting attempted:

- uninstall, re-install

- ran app in compatibility mode

- adjusted display settings Windows applies to app

A global protect connected client machine access a resource(behind Cisco router) that is connected to the host PA 800 Firewall via IPsec

Hello Everyone,

I have a Palo Alto 820 Firewall locally and it has been licensed and configured with global protect for the remote mobility of our users. And It also has a Site-to-Site IPsec connectivity to a remote location of a different organizatio

Global Protect HIP Check and AD Computer Account

GP client upgrade fails to connect to portal after successful VPN connection?

I ran into an issue trying to push a GP client upgrade and seem to have run into a problem where, with multiple portals and gateways, the client can not reconnect to the same portal as it already authenticated against when connected to the gateway on

Checking if Global Protect is active (connected) via script or command line with the correct portal?

I was able to find a similar post here: LIVEcommunity - Checking if Global Protect is active (connected) via script or command line - LIVEcommunity - 505980 (paloaltonetworks.com) but was wondering if there is a way to also make sure that I'm connect

Checking if Global Protect is active (connected) via script or command line

Hello Team,

I would like to find out if there's an option to check if Global Protect agent is connected and VPN is active using Windows CMD or PowerShell script?

Thanks. 

Internet keep disconnect for USERS

Hi,

We are using PALOALTO since 2 years when we replaced our firewall cisco with paloalto we thought that the things will be normal, but after deploying it we started facing issues frequently. Our main problem is INTERNET DISCONNECTION from the tim

Global Protect 5.2.3.0-10 | Debian Linux OS | Question regarding ARM CPUs

Good morning Palo Community,

Just had a quick question regarding if the Global Protect VPN client (5.2.3.0-10) running on a Debian (Bullseye) Linux OS build, would this version support ARM CPUs?

Any help or feedback is greatly appreciated!

GlobalProtec

GlobalProtect / Mac-OS / Kerberos: Authentication failed: empty password

I'm working on an environment that uses a product called "Jamf Connect" to provide Kerberos authentication for Mac-OS users. It works for all services on the domain except for an internal GlobalProtect gateway which is configured for Kerberos SSO.

[RFC5746] issue with ssl decryption: openssl3.0 unsafe legacy renegotiation disabled

Since I upgraded to the lastest fedora, all of my python/ansible script failed when they are decrypted by our palo alto ssl outbound policy.

After some diging, fedora 35 was using openssl 1.1.1 and fedora 36 switched to openssl 3.0: https://fedorap

GP 6.2.0-89 White popup window issue

Hello everyone,

We recently pushed 6.2.0-89 to our whole organization. It's been very smooth so far except for one odd issue that has been reported multiple times so far. This issues hasn't happened before on any older version. 

I've attached two s