Number of people connected to global protect

Hi Guys,

we are doing a review of the number of people connected via global protect at certain points in time.

Is there a way to get a report of this from the logs?

From the reports i got i seem to be only getting when people connected in so if i

Azure VDI Global Protect Configuration

Hello,

We have several portals we currently access from our local machines. We are deploying a Azure VDI solution mitigating the need to access the portals from our local machine but from the Azure VDI infrastructure.

During Testing with Global P

policy to only allow specific Host-ID auth thru GlobalProtect.

i'm seeing bad guys trying to bruteforce my GlobalProtect VPN and I want to stop that.

I want to achieve only specific laptop Host-ID can go thru GlobalProtect authentication and bad guys when they trying to auth with wrong account/pwd should not abl

Endpoint Traffic Enforcement for VM

Hi everyone.

There is "Endpoint Traffic Enforcement" feature which does not allow connection outside the Globalprotect connection, but it does not work with virtual machines on host. So, if you have a VM on host with Globalprotect and configure net

GlobalProtect app iOS issue

We are currently using PA-410 equipment and the GP gateway license is also registered.
After setting the GP, it is used normally on Android and Windows
but even if the certificate is registered on the iOS device, it is possible to connect from the GP a

Does GP support per app VPN?

Hi all,

Searched the community but unable to find any answer so post here.

I would like to implement per app VPN for mobile users (iOS and Android). So if a user starts an app (e.g Confluence), GP will automatically establish VPN.

There are some

LSVPN Portal Redundancy

I successfully setup LSVPN with a single portal , 2 gateways and some satellites.  I realized that if my portal goes down for any reason, then the gateways are useless since the satellite needs the portal to get to the gateways.  Any ideas on how bes

GlobalProtect authentication with NPS Plugin to Azure MFA problems

Hi,

We have configured GlobalProtect to use NPS Plugin to Azure MFA as primary authentication.

The thing is that it only works every other time, when it doesn't work it says "Radius Timeout".

Any ideas of what could be the problem?

We have tried wi

Globalprotect iOS connect and internet issue

Hello, sir

Globalprotect is set up and in use, but there is a problem in iOS

In Android, it is normally connected and the Internet is connected through the GP, but in iOS, it is connected, but the Internet is not available, and the log value is as fo

Internal/External Gateway User-id

Dear Guys,

I try to configure my global protect portal to connect my clients through external or internal networks.

I configure my agent with internal detection and external parameters.

When i connect in the internal networks, the FW see me in the in

Configure GlobalProtect Pre-Logon using SAML authentication with Azure MFA

Is there a knowledge article for how to configure GlobalProtect with SAML authentication and Azure MFA.  Currently we authenticate using Radius with Azure MFA extension.  Currently we have test configuration with GlobalProtect using SAML authenticati

How to re-prompt authentication login when intregate OKTA when user close window promt login

Hi Expert  ,

I would like to know how to config GP to re-prompt authentication login when user close login prompt (We integrate OKTA)  because we found when user close the GP will connecting alway not prompt again even through will refresh connecti

Need to configure Globalprotect for NSX-T north-south traffic.

Need to configure Globalprotect for NSX-T north-south traffic.

Hi, 

I am looking for documentation of globalprotect VPN with NSX-T manager. Is this configuration possible?

If possible could you anyone help??

Thank you in advance.

Can PAN gateway client config use both IP based split tunneling *and* use domain name exceptions?

When I first set up the client-config a couple of years ago I tried out the name based split tunneling and it didn't seem to work. As I was under the gun I implemented IP based split tunneling but never ran the name based split tunneling issue to gro