GlobalProtect Discussions | Palo Alto Networks

Android SAML MFA Issue

Hi,

We performed authorization on desktops and browsers using SAML login with GlobalProtect. We also did it on the mobile app, but we ran into a problem.

We provide the MFA process with push notification through our own application. GlobalProtect opens

...

verify encrption

How do i verify that all non console
administrative access is encrpted using strong
cryptography?

GlobalProtect logged in user issue

Hello Mr.

After changing from GlobalProtect 5.1.14 to 5.2.8 it's very noticed that added authentication user such as 'mydomain\myusername' just change it self to 'myusername' only just by itself which doesn't allow it to access the resourc

...

Resolved! Does PBF rule works for traffic originating from Global Protect Client

Hi All,

We have two Global Protect portals/Gateways configured on each firewall ISP 1(Eth 1/1) and ISP 2(Eth 1/2) interfaces.

We had enabled ECMP on the firewall with max path 2 and configured ISP 1 and ISP 2 as default routes.

When an user is connec

...

Resolved! Palo Alto Globalprotect app to gateway communication impact because of free hotel Wi-Fi.

Hello to All,

We see issues when someone goes to a hotel and uses the fee Wi-Fi to start the Globalprotect agent application, because many hotels have SSL decryption proxy devices and the Globalprotect agent sees that the Gateway certificate is with

...

Resolved! GlobalProtect client script options

I want to create a script or some other option if it is available that will present an icon on the users desk so that they can quickly disable/ enable the GP client without the reason prompt. I had a quick look but I don't see any CLI oprtions availa

...

Cisco DUO MFA with Radius under Global Protect

Hi Folks,

We are trying to configure MFA under Radius using Cisco DUO.

We have done the configuration for MFA in firewall for the same.

Now we are facing some problem such as 'Reason: Invalid username/password. auth profile \'Duo_Auth\', vsys \'vsys1\'

...

Resolved! GlobalProtect Certificate Profile Issue

Hello,

I have a situation where I am looking for advice and help.

An existing PA5050 is a portal/gateway and we have several global PAs as gateways also

The gateway authentication on the Portal/Gateway uses external authentication and NO certificate

...

GlobalProtect Uninstall Issue

We have a user who cannot connect to VPN. When trying to uninstall the app we get the message that another account on the computer uses it and are prevented from uninstalling. No one else is logged into the machine. I tried disabling it and enabli

...

GlobalProtect logged in user issue

Hello Mr.

After changing from GlobalProtect 5.1.14 to 5.2.8 it's very noticed that added authentication user such as mydomain\myusername just change it self to myusername only just by itself which doesn't allow it to access the resources.

W

...

GlobalProtect app 5.1.9?

Hello,

In the Palo Alto Networks Security Advisories / CVE-2021-3057 it refers to the issue being fixed in GlobalProtect app 5.1.9 - however, when either looking for it in the list on the firewall (after refreshing the list by 'Check Now'), or lookin

...

What if my global protect client version is 5.2.7 got affected due to vulnerability CVE-2021-3057 ?

As per client requirement, I checked that client has global protect client version 5.2.7. Now According to CVE-2021-3057 Vulnerability this version got affected. If I will update the current version from 5.2.7 to 5.2.8 then this vulnerability not aff

...

Install GlobalProtect ubuntu 20.04

Hi there,

I'm trying to install GlobalProtect_deb-5.3.1.0-36.deb on ubuntu 20.04. when i run globalprotect i'm getting segmentation fault (core dumped). any solution for this please !

Thanks in advance

Documentation for LSVPN deployments

Does anyone have access to, pointers to, or stashes of better documentation for how LSVPN works? Something along the lines of "best practices" for configuring routing for the satellites? Or with "big picture" information on how all the pieces work

...

Global Protect - exclude video traffic not working

Hello,

Did somebody successfully implement this feature ?

I'm working on GP 5.0.7 and PANOS 8.1, also we have a Global Protect Gateway license active.

I want to exclude video traffic from the VPN tunnel. So I go to my external gateway, and enable excl

...

Discussions

Android SAML MFA Issue

verify encrption

GlobalProtect logged in user issue

Resolved! Does PBF rule works for traffic originating from Global Protect Client

Resolved! Palo Alto Globalprotect app to gateway communication impact because of free hotel Wi-Fi.

Resolved! GlobalProtect client script options

Cisco DUO MFA with Radius under Global Protect

Resolved! GlobalProtect Certificate Profile Issue

GlobalProtect Uninstall Issue

GlobalProtect logged in user issue

GlobalProtect app 5.1.9?

What if my global protect client version is 5.2.7 got affected due to vulnerability CVE-2021-3057 ?

Install GlobalProtect ubuntu 20.04

Documentation for LSVPN deployments

Global Protect - exclude video traffic not working

Creating DDNS on the Palo Alto firewall (using noip.com), and we are unable to access the GlobalProtect portal

Need to upgrade to next available GP version

GP client update fails to download, DNS record needed

GlobalProtect version 3 certificate

iOS VPN on-Demand with client certificate - Reboot and no VPN Connection

Re: How to restrict GP Portal authentication to specified countries

Re: PAN-221857 Known Issue - Users are unable to log in to the GlobalProtect app using SAML

Re: How to restrict GP Portal authentication to specified countries

Re: GlobalProtect App Settings and Multiple environments.

SAML Login Issue with Token-signing Certificate