GlobalProtect Discussions

SAML authentication with global protect gateway configuration client settings user set to specific

The customer tries to put specific users in the global protect gateway agent and he tries to give a specific IP pool to each user. If the user sets it to any then it's working but if the user sets it to specific then it's not working with SAML integr

Issue using MFA in GlobalProtect )

When connecting with Ironchip (MFA), two-factor authentication is only succesfull if the IP is specified in the gateway. If we use the domain to connect GlobalProtect the MFA is not working.

The client auth is 

HIP Check to check all browser version in host

HIP Checks can check for 4 different types of browsers version at the same time like Chrome, Firefox, Safari, Edge?

Need to Allow user to uninstall Global Protect with a Password

Hi all,

Here i have a requirement to uninstall Global Protect with a password.

i configured the APP Tab as "allow with password"

We entered the right Password, but still its showing Password does not match.

PAN-OS installed in FW 10.1.9 

Can an

GlobaProtec many accound and certificate on linux

Hi,
I have a Linux with 6 users profile , how can I setup Global Protect VPN so that each user will use their own certificate,
Global now sees the user's last imported certificate
Linux 20.04 ltsc
GP 5.3.4

Checking if GlobalProtect status is active (connected) via script or command line

Hello Team,

I would like to find out if there's an way to check if GlobalProtect agent status is connected and VPN is active on Macintosh using bash or zsh command line or script.

Thanks.

GlobalProtect IPv6 findings

With the IPv6 sinkholing feature not enabled, Mac and Windows users used to be able to successfully connect to IPv6 resources--seemingly completely bypassing GlobalProtect.  Then some Mac users reported not being able to connect to those IPv6 resourc

GP IPv6 split tunnel when sinkholing

If the IPv6 sinkholing feature is enabled for GP / Prisma Access, does split-tunneling IPv6 traffic work?  We have some users that need to access some resources via IPv6 but would like to sinkhole all other IPv6 traffic.

VPN Not Connecting on MAC OSX

Hello,

I am setting up the Global Protect VPN on our PA-850 and unable to connect with MAC OSX clients. I am using Azure for 2-factor and the vpn is working fine with windows clients. On a MAC (13.1) I get the 2-factor sign-in but the Palo Alto emb

SSO window not signing in automatically

We recently switched from the built-in authentication window, to the default browser window for SSO sign-in with O365 SAML. This has worked fine for about 50% of people, however, the other 50% are not being signed in automatically. They have to press

GP installation issues

GP gateway and portal are configured properly and they are working as expected. We want to deliver the GP agent to all employees in a automatic way using our MDM tool which supports PowerShell and bash scripts. And also we using split tunnel for the