GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Resolved! Split Tunneling Included Sites next hop

I figured I would start here since this seems like an easy fix. We are working to include certains IPs/domains/apps etc in the tunnel. Currently the only traffic that is routed through the tunnel is internal networks, which operates fine, all other traffic goes out through their own gateway. When we try to include a domain like ipchicken.com, I ...

Global Protect in Microsoft Store Outdated

Hello All, I had a customer reach out to me about when the Microsoft Store would have a newer version of GP . Currently the version available is 5.2.8-5. Does anyone know when version 6 would be available? Thank you in advance. GlobalProtect Please note you are posting a public message where community members and experts can provide ass...

bdaniels by L0 Member
  • 2873 Views
  • 2 replies
  • 0 Likes

Server Certificate Error

I was able to connect a few weeks prior to this error by uninstalling and reinstalling the GlobalProtect client. However this is no longer working. I'm getting the Server Certificate Error popup: I checked Device/Certificate Management/Certificates and all my certificates have Status of valid. For VPN I have the setting for Username/Passw...

PaloAltoVPNError.png

GlobalProtect client cant access internal resources

PAN OS 8.1.22 / GlobalProtect Agent 6.0.3 (1) GlobalProtect has no issue connecting to portal/gateway (Dell Latitude, Windows 11) (2) Gateway Access Route (split tunnel)(No direct access to local network is UNTICK) has access to 0.0.0.0/0 (3) VPN users authenticated are assign 10.0.1.1-40 address (4) DNS assignment is 192.168.10.10/24 (dc-01.i...

Jee.Khai by L1 Bithead
  • 2185 Views
  • 1 replies
  • 0 Likes

Comcast domain suffix getting appended into DNS requests over Global Protect

I ran a packet capture on PAN to try and figure out an intermittent problem with one of my GP 5.2.5.66 users (Windows, Surface Pro) where certain web based or internal applications will just start working. The external are Outlook O365, Teams for example. If he disables GP then everything starts working again. We verified he's connected to VPN d...

Global Protect Client and Intune Security Baseline

Greetings PAN community. Hoping to find someone that has seen this issue already so that I can move forward with my implementation of Intune Baselines. We use Configuration profiles at the moment to manage our fleet where we use the Global Protect client for vpn and OKTA for MFA to complete the connection. I have a test group set up in Azure t...

BHill007 by L0 Member
  • 17436 Views
  • 5 replies
  • 0 Likes

Resolved! Different agent configs Problem

Hi there, we have global protect with different agent configs based on ad groups enrolled. We have different configs for always on and always on disable on demand since the upgrade to global protect 6.0.3 some users seems to get a different config (always on instead of disable on demand) in PANOS 9.0 you could see in the system logs of t...

Softphone connect issue on GP agent 5.2.8 version when primary DNS is unreachable in GP setting

The endpoint having GP client version 5.2.8, is having an issue to connect to Secondary DNS Server for SIP traffic only. The issue is occurring on 5.2.8 when the primary DNS is not reachable. • WFH users connected to VPN gateways, were having primary DNS DC1 and secondary DNS DC2 in VPN setting.• Due to Planned activity Primary DNS DC1 server wa...

Deepak25 by L3 Networker
  • 3027 Views
  • 1 replies
  • 0 Likes

Separation of profiles for authorization and authentication in GlobalProtect

Hello friends! Help me please.I need advice on authentication and authorization when connecting to a GP.Is it possible to separate these roles? For example: authenticate using SAML.And then check this user for belonging to groups in LDAP, and depending on these groups, send him to the gateway / send him settings / apply policies. In general, aut...

GlobalProtect Always-on User Experience

Hey all - We're currently in the beta-testing phase of our GlobalProtect implementation, and I have a couple of questions around 'best practices' to ensure a good user experience. First, our setup: - PAN-OS 10.1.5-h1 - GlobalProtect client v5.2.11-10 (Mac OS (12.x) & Windows 10) - Pre-logon via machine-based certificates - User logon via Ok...

GlobalProtect License Portal or GP license Gateway?

Hi all, I need a clarify about GP Portal license and GP Gateway license. Which one is needed for clientless VPN?I have this PA-850 and running on PanOS 9.0.13, on support portal it shown that I have GP Gateway license active but GP Portal license is expired. As far as i know we only need Globalprotect license to use more features, but the suppo...

febriantofitranto_0-1643298903445.png

Global protect SAML with azure need to make the joined PC to access without going to authentication other than to ask for username password via webpa

Global protect SAML with azure need to make the joined PC to access without going to authentication other than to ask for username password via webpage. I done the SAML and enabled the Sigle sign on from agent tab to be ON so the global protect get the username password when user login but the issue when the not joined PC tried it will get the...

  • 1675 Posts
  • 68 Subscriptions
Top Solution Authors
Labels