This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Global Protect MFA Looping

Hello, I am facing a weird issue with Global Protect where after a user authenticates via Okta Radius to the Portal and enters their MFA SMS Key the GP Agent asks for the user to enter the MFA SMS Key again with the response of ('A message was sent or a call was made to the phone in the past 30 seconds. Please try again when 30 secs have passed....

GP example script running as admin

Hi, according to the doc, to run a pre (or post) vpn script can be run as admin using the following: context admin | user I haven't been able to get this working, so I'm guessing I have the variables all wrong. Can someone give me an example of how this would be used in a script? For example my current registry entry works as local user like bel...

Dekkar by L1 Bithead
  • 2588 Views
  • 1 replies
  • 0 Likes

GlobalProtect log stage and event

My customer was a Brute force attacked on last week. Today they see GlobalProtect log is from another country (we are in TH) and wonder is this abnormal activity or not. and what is the meaning of "before-login" on stage column and "portal-prelogin" on event column

Group-based authorization for Azure SAML users

We now have finished the integration of GlobalProtect with Azure SAML, the authentication process is running properly without any issue. However, because of different types of users: staff, vendor and admin, which required more precise permission management for each group of users. I have tried searching online, but cannot get a viable way to ma...

Internet not working after conncted to GlobalProtect. But it is happening only for a particular network provider.

The Internet does not work once the user connects to two particular network providers. The Global Protect is in the pre-logon method and enforced connection. When disconnected from GP with an admin password, the Internet is working.With a working network provider, the internet is working, GP is connected, and the user is able to ping Google and ...

Anyone Experiencing GP Issues on Frontier Fios?

We've been receiving multiple reports of issues with Frontier Fios and GlobalProtect (Prisma Cloud) for the past two days. This seems to be isolated to the Southern California region. All other ISPs both in Southern California and elsewhere are able to connect just fine. Changing gateways does not seem to help. It has to be something on the Fron...

Radius + RSA SecurID on premises

Hello Folkes, I am demoing a PA-1410 and am having a use case problem. We currently use Pulse Secure VPN concentrators, and are looking for an alternative due to past security issues.. The Pulse concentrator works to allow us to: - Login w/ Radius Username + Password - Then get a secondary MFA login to authenticate against an RSA ACE ser...

misleading IOS Notification - "Globalprotect Always-On mode is enabled. Please sign in to continue"

We are currently testing Globalprotect for IOS and we are seeing this notification in the phones - "Globalprotect Always-On mode is enabled. Please sign in to continue" Everything is working as expected in our test setup which is on-demand, using Azure SAML for authentication with client certificate - the one thing we don't understand or not m...

RREALICA by L2 Linker
  • 2074 Views
  • 2 replies
  • 0 Likes

Global Protect with PPPoE static IP

I have a static ip on my ISP PPPoE connection, i want to configure a GP with this ISP. I am a bit confused that i don't have the gateway configured on my interface routes how to do it. My PPPoE configuration is user name & Password but my ISP is providing static IP at the backend.

HELP - I have a hacker trying to use SPECIFIC users to get into my VPN service

The pattern is they try nonsense users such as "cisco" and I block their IP they come from, but they always come back. I am getting frequent attempts with various other users, but they seem to come back within an hour of me blocking their IPs.I need a rule that immediately blocks the user, potentially one that could add to a dynamic IP list disc...

  • 2079 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks