This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Tcp Scan on VPN Global Protect

Dear Team, I have a server with ip 10.206.195.16, on that server port 4410 is not active. But when I try to Tcp Scan to that server with port 4410 using VPN Global Protect the state TcpTestSuccessed is 'True'. When I try to Tcp Scan to that server with port using another VPN (Anyconnect) or with internal network without VPN the state TcpTestSu...

Hendrik9 by L1 Bithead
  • 5624 Views
  • 8 replies
  • 0 Likes

Global Protect with Duo MFA

Hi Friends, We have configured the duo mfa for global protect users. We have configured all the requirements for the duo using the below mentioned link. https://duo.com/docs/paloalto But still the MFA is not working. I have some logs related to this but Can you please help me where we are missing or making a mistake. Logs : 2023-06-12 13...

Satyak by L3 Networker
  • 5126 Views
  • 5 replies
  • 0 Likes

RADIUS OTP challenge does not work ( GlobalProtect with PAN-OS 10.1.x )

I got the issue that Globalprotect doesn't ask for OTP during gateway authentication, users get the error message:" Gateway XXX: The network connection is unreachable or the gateway is unresponsive. Check the network connection and reconnect "I tried 9.1x to 10.1.x, here is the results.9.1.4 works9.1.6 works10.0.8 works10.1.0 not work 10.1.3 not...

YanQian by L1 Bithead
  • 3370 Views
  • 2 replies
  • 1 Likes

GlobalProtect in user-logon (Always-On) mode Symptom of unable to log out user when disconnected

GlobalProtect in user-logon (Always-On) modein use When "disable", in Client PC (Windows) When checking the result with "ipconfig", the IP is assignedSymptoms of PanGP Virtual Adapter not being disabledChecked in the firewall, tunneling is still on and you are logged in Are these symptoms correct?Is it the way it works in user-logon (Always on) ...

jmhwang_0-1687839923784.png
jmhwang_1-1687840026468.png
jmhwang by L1 Bithead
  • 975 Views
  • 0 replies
  • 0 Likes

Uninstall GlobalProtect on Mac ("Content Filter" remaining)

Dear all,I'm trying to uninstall GlobalProtect on a Mac Ventura system. I've already executed the command `sudo /Applications/GlobalProtect.app/Contents/Resources/uninstall_gp.sh` in a Terminal. And it looks like the software has been removed. At least, the "/Applications/GlobalProtect.app" path is gone. I then restarted the computer.However...

rwanwork by L1 Bithead
  • 1939 Views
  • 0 replies
  • 0 Likes

globalprotect Client certificate with OID requesting users to select their certificate

I recently configured my globalprotect agent to look for a machine certificate including a specific OID to avoid a confusing selection process on devices with multiple client certificates signed by the same CA. Our original configuration started requesting users to select which certificate to use. I wanted to avoid this confusion by including an...

GP with MFA on AD backend

Hi All, need verification please.. looking to implement GP for a client with user-id and MFA. The PA FWs are Azure based same for the AD servers and will use ldap to connect to AD from FWs. The AD has MFA integrated already. so the question is do i need to do anything different on the PA GP config for this to work or straight forward user auth...

Ants by L1 Bithead
  • 893 Views
  • 0 replies
  • 0 Likes

Global Protect issues on few Win10 machines

Hi Guys, already have raised support ticket but no reply for few days, so trying to get some info here. I have seen couple of threads but not sure they are related to issue we have with these few Win10 laptops. We have Palo VM on 10.0.6 OS and GP is 5.2.10-6 .We have few users having problem with GP. From what we can see, is affecting only Win1...

GlobalProtect windows store app - how to???

hi all, new to the palo alto world, however i cannot seem to find info on setting up globalprotect to use the windows store version of the GP app. I've ot the subscription licence applied to my firewall and went throuhg the pocess of creating a clientless vpn connection to no avail.if i use the globalprotect client that i download that works fin...

Resolved! Global Protect Region based connection

Hi Team, We have a requirement to configure the Global Protect as below. > We have 3 locations to connect to. Users should connect to one of these 3 locations based on their nearby location. If User 1 is near to GW3 then he should connect to GW3. If GW3 is not available, then the next nearest location should be connected automatically. Is th...

Migrate GP users from on-prem to Prisma Access gateways

Hi- I'm planning a migration of Windows and Mac OS clients from our on-prem GP gateways to Prisma Access. I had planned on making use of registry and plist settings, specifically 'portal' and 'prelogon,' to force the GP client to connect to the Prisma portal on next restart, but that doesn't seem to be getting the job done. I haven't tried rem...

Global Protect Portal Client Certificate Authentication - Cert not found

I am trying to setup Global Protect Portal authentication using Client Certificate Authentication instead of radius. I generated CA and self signed cert on the palo. Configured Client Cert profile and attached it to Portal -> Authentication (removed Radius auth) and selected Client Cert profile. Also downloaded and installed the Cert and root...

Global Protect sole credential provider for Smart Cards

For weeks, we have been testing combinations of attempting to go passwordless via the use of Smart Cards. The reason being is that Smart Cards work with all the technologies we have and Global Protect supports PIN SSO with Smart Cards for a seamless sign in. There is an unfortunate side effect with the Global Protect Windows Credential Provid...

jaltmann by L1 Bithead
  • 1963 Views
  • 0 replies
  • 0 Likes
  • 2069 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks