Automatically resetting preferred Gateway to "Best Available"?

Is there a way to automatically reset a GP client's preferred Gateway setting from the Portal?

I have gone from having multiple one-to-one Portal-Gateway setups, to a many-to-many setup where the GP client picks the best available Gateway based on ad

"Windows 10 S" won't open SAML window

We have some users on "Windows 10 S" the computers are not joined to the domain and they will not open the SAML window , it sits at the verifying your sign-in info message. The version of GP is 5.2.8-5 and it can only be downloaded through the MS sto

Global Protect MAF with SafeNet radius server

I need to integrate my GP with an undefined MFA third-party vendor named "SafeNet". As the documentation shared from the vendor needs to integrate with it as a Radius server. And I did that and got OTP successfully.

But right now I need to add 2 fact

Global Protect VPN not showing in Win7

Hi,

Yesterday i clicked on Yes when Global Protect VPN showing update and after that i am unable to find it in system tray and also i am unable to launch it from anywhere like start menu, i even tried to launch it from C:\Program Files\Palo Alto Netwo

Global Protect 6.0 and 6.0.1 do not install the PANGP virtual adapter on Win 8

I still have a few users with windows 8/8.1 and I am seeing an issue with their machines after activating the latest GP revisions on my firewalls. After a fair amount of troubleshooting, I found that the PANGP adapter wasn't installed.  

Users report

Global Protect Internal Gateway/VPN

Can we have Global Protect Internal VPN working same as external, means on-demand and  when we connect to internal gateway we should get an IP assigned from firewall. In that case we can restrict that IP pool  in security policies to access critical

Global Protect Disconnections

Hi everyone, hope someone can help me out with this. I'm looking into an issue whereby a user suffers frequent drops when connected to Global Protect. Apparently he sits next to the router and Internet is good. Today he reports drops at the following

Where is 5.2.13 for Windows?

I am still looking/waiting on 5.2.13 to address the most recent security vulnerabilities.   A couple of weeks ago they updated the bulletin to indicate the issue was not present in 5.2.13, but there is no 5.2.13 that I can find on Palo's site or on t

GP uses Microsoft Account connected to Windows 11 User | Can't declare actual VPN User

I am trying to connect to an employer's network using an different account that's different from my Microsoft account connected to my Windows user. However, I am not able to declare my username when connecting, I just get an error screen telling me t

GP disconnects in a set up with two ISPs when the primary link is down and users try to connect using the secondary link

Good morning,

in production we have a pair of PA-440 in HA (10.1.5). The firewalls have been configured with double VR as described in this article:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFiCAK

The firewalls are conn

Portals and Gateways General Question

I have two separate portal/gateways on two separate PANs. Call them gp1.acme.com and gp2.acme.com. If I wanted to make the gateway on gp2 be primary for laptops hitting gp1.acme.com portal - what happens at the network level? I presume I add a second

Globalprotect verison 5.2.8 doesnt upgrade on some of the users

Hi Team,

We have currently updated GlobalProtect to 5.2.11 from 5.2.10. While running report we came to know that some users are still on 5.2.8 and client is not getting updated on those devices. Can you please suggest if there an issue with version

What am I doing wrong with Global Protect updates?

GlobalProtect Pre-logon tunnel rename doesn't work as expected

Hi Guys,

We are currently running PanOS8.1.1 have some issues with global protect pre-logon. I have configured pre-logon as per below article.

https://live.paloaltonetworks.com/t5/Configuration-Articles/Basic-GlobalProtect-Configuration-with-Pre-logon

Getting uptime information for a GlobalProtect connection?

Hello,

Is there a way (programmatically) to access current uptime for an active GlobalProtect connection?

I need to warn the users of my program well before (15+min) the connection times out. We are radiologists, and VPN dying in the middle of report