GlobalProtect Authentication Override

Been using Radius auth to portal with auth override to gateway for years but seems to now be playing up...  Gateway is requesting radius auth and ignoring override settings.

This is the same issue on both Windoze and IOS.

PA 3020  9.1.14

We have

GlobalProtect Agent v6.0.0 showing strange Characters

Hi LIVECommunity,

Has someone else seen this behavior on the GP Agent?  All of a sudden it started showing strange characters.  The agent is v6.0.0, installed on a Windows10 with the English language.  By the way the agent works fine (I can connect

Migrate GlobalProtect users from LDAP portal to SAML portal

Dear community,

Pleae could someone help with my GlobalProtect transition from LDAP to SAML ?

The SAML side of things has been setup and tested. I would now like to move from one portal and gateway (using LDAP auth) to new ones using SAML auth bu

Assigning a static IP to a Global Protect user

Is there a way to assign a static IP to a global protect user?  I have a couple security policies that specify userids in the source, but the policies are not getting picked up.  They are dropping to the default deny.  I verified that the userid show

Global Protect HIP check severity numbers (Windows)

The Global Protect documentation for severity numbers is a little incomplete.  I opened a TAC case and got the full breakdown and wanted to document it.

Severity Value                                                     Rating

-2 (PATCHMANAGEMENTAGENT

Global protect client lauching several times in windows

Hi team,

One of our clients are using global protect client. Recently they are facing a issue like the global protect client is launched several times in the system tray (right side bottom window ) . Help me on this with the valuable discusions.#glob

GlobalProtect "Connect Before Logon" not working with Duo SSO

We recently implemented Duo Multi-Factor Authentication (MFA) and have configured GlobalProtect to use Duo's SSO service (which in turn Duo uses Azure AD for authenticating the user).  We are using SAML for authentication, so when the user clicks 'Co

Windows 11 22H2 device guard Radius MS-CHAPv2

Hi,

The newly released Windows client update 22H2 enables device guard by default which will block MS-CHAPv2 for radius authentication use.

We currently use this for our GP configuration since radius auth supports users changing expired passwords v

02322099

Hi Team,

We have a scheduled session with client at1.00 pm IST for the case 02322099. but end of the moment TAC engineer is informing us to reschedule the session. as this is a scheduled session we can't reschedule it kindly align another engineer

Allow User to Uninstall GlobalProtect App option for MAC

Hello guys,

The customer wants to restrict users from deleting GlobalProtect.

As shown in the figure below, I can configure it so that it cannot be uninstalled for the window user, but I cannot find the relevant setting for MAC.



Does anyone know a

Global Protect - Connect before logon Questions

Good Afternoon, 

I have two requirements that I am trying to meet with Global Protect:

1. Pre-logon for a new or existing remote user that has never logged onto a new pc. I set this up and it seems to be working fine and smoothly transitions the

Reset windows10 password without connecting on-prem domain controller

Is updated password will sync to device, without connecting on-prem domain controller. 

Global protect client upgrade issue

When Global protect client upgraded from 5.2.10 to 5.2.12 for MacBook,  global protect clients enter cycled installation. Automatically disconnect ssl vpn--->prompt to upgrade---》automatically exit global protect client--〉open global protect client--