A global protect connected client machine access a resource(behind Cisco router) that is connected to the host PA 800 Firewall via IPsec

Hello Everyone,

I have a Palo Alto 820 Firewall locally and it has been licensed and configured with global protect for the remote mobility of our users. And It also has a Site-to-Site IPsec connectivity to a remote location of a different organizatio

Global Protect HIP Check and AD Computer Account

GP client upgrade fails to connect to portal after successful VPN connection?

I ran into an issue trying to push a GP client upgrade and seem to have run into a problem where, with multiple portals and gateways, the client can not reconnect to the same portal as it already authenticated against when connected to the gateway on

Checking if Global Protect is active (connected) via script or command line with the correct portal?

I was able to find a similar post here: LIVEcommunity - Checking if Global Protect is active (connected) via script or command line - LIVEcommunity - 505980 (paloaltonetworks.com) but was wondering if there is a way to also make sure that I'm connect

Checking if Global Protect is active (connected) via script or command line

Hello Team,

I would like to find out if there's an option to check if Global Protect agent is connected and VPN is active using Windows CMD or PowerShell script?

Thanks. 

Internet keep disconnect for USERS

Hi,

We are using PALOALTO since 2 years when we replaced our firewall cisco with paloalto we thought that the things will be normal, but after deploying it we started facing issues frequently. Our main problem is INTERNET DISCONNECTION from the tim

Global Protect 5.2.3.0-10 | Debian Linux OS | Question regarding ARM CPUs

Good morning Palo Community,

Just had a quick question regarding if the Global Protect VPN client (5.2.3.0-10) running on a Debian (Bullseye) Linux OS build, would this version support ARM CPUs?

Any help or feedback is greatly appreciated!

GlobalProtec

GlobalProtect / Mac-OS / Kerberos: Authentication failed: empty password

I'm working on an environment that uses a product called "Jamf Connect" to provide Kerberos authentication for Mac-OS users. It works for all services on the domain except for an internal GlobalProtect gateway which is configured for Kerberos SSO.

GP disconnects frequently

Hi All,

Needing your assistance. Our GP users on our VPN BC-OKI will get disconnected at least once or twice the whole day. I check the ISP interfaces and HA and IP Sec tunnels all are up. Currently i'm connected on BC OKI now and I'm a newbie on P

GP internal gateway for Azure AD authenticated users

In our on-prem firewalls, some policies are based on user-ID.

User-to-IP mapping for the corresponding users are sourced via different mechanisms such as;

 - User-ID agents installed on domain-controllers

 - terminal server agents.

This setup has bee

How to route multicast traffic through globalprotect vpn?

I have configured all the required multicast settings but still failing. On remote VPN client, the IGMP packets are sent to local def gateway but not GP gateway. I have set the "no direct access to local network" but still it fails. How can I make su

Global Protect

Been trying to connect to a client VPN using GP 5.2.13-48.

The client auto logs in using my Windows credentials which are not the correct credentials.   I try to sign out but the user remains persistent.  I can't get the client to prompt for a new

GlobalProtect MFA issue with Teams

Hi all,

We recently ran into an odd issue where we have a few users who are running into MFA problems because Teams appears to be launching before GlobalProtect can connect. We are working on getting pre login working which will hopefully solve thi

How to configure the multi GP portals on Iphone

Hi,

I want to configure the multi portals of GlobalProtect on iPhone.
Could you tell me how to configure with Apple configurator.

BR