This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

GlobalProtect VPN settings

Hello I discover GP so I'm sorry, in advance, if my questions are stupide. Q1 : How I can force my users to enter their credentials (OnPrem AD or Azure AD depending the auth profile configured) when they start GP protect ? I don't want to use SSO and I want that my user enter their credential each time that they want to start the VPN connexi...

Global Protect Gateway on PA500-VM in GCP

Has anyone configured global protect gateway in Google cloud. I have attached an external IP to my PA500-VM. Configured certs, portal, gateway, policies, routes and tunnel. When testing I see my external IP hitting the firewall but only see ssl traffic not seeing global protect app which is in the policy. Logs from client says can't contact portal

jonwest1 by L0 Member
  • 1785 Views
  • 0 replies
  • 0 Likes

Spilt tunnel is not working in macbooks when it connects global vpn.

Hi Team, one of our customers has configured spit tunnel with include routes (doesn’t configured domain and application) issue was for windows user working as expected but for MAC user DNS not resolving ( Global produced state was connected ) Action Taken from our side : ++ We suggested update the global product version ( from 5.2.9 to 5.2...

Multiple Authentication profiles Global Protect

Hi Everyone, Please help me out with this one. We have a Global Protect setup that currently 1000 users are using and they are currently using LDAP authentication. We would like to setup Azure MFA (SAML). Would it be possible to create one SAML auth profile with our Pilot test users and then still keep the LDAP Auth profile for all the oth...

Resolved! Connect to Globalprotect from Guest Zone

Hello, I'm having trouble setting this up correctly. We have eth1/2 where a PPPoE Connection is available that we use for Internet Traffic from our guest wifi. We also have eth1/14 where our main Connection is running. We have a GP Configuration which allows external Users to connect to via an external IP Address which is then NATted to the ...

GlobalProtect fails connection

Hi I have just installed GlobalProtect and installation and first connect seems to work, but only a few seconds. I get this: The virtual adapter was not set up correctly due to a delay. GlobalProtect will try again soon. If the issue persists, please restart your system. Tried the following: I uninstalled / reinstalled. Stopped WMI, deleting...

Rathsach by L0 Member
  • 2729 Views
  • 2 replies
  • 0 Likes

Global Protect Choking Internet Access?

To begin with, I am not an IT person but simply an end user in a big company... I work from home and my ISP subscription is 25Mbps download and 5Mbps upload. I am using Bell Wireless Home Internet in Canada - it is a cell phone connected service. My personal computers work very well with these speeds, however... With Global Protect enabled on my...

PCI compliance ECDHE/RSA

There were a couple of discussions on this months ago with no resolution. SecureTrust's PCI scans say that we are failing. We would need to set both RSA and ECDHE to 2048 but there is no option to do so that I know of for the SSL/TLS profile. The workaround that was discussed was to disable ECDHE and RSA. However, among other possible issues, ...

Global Protect Notification before disconnect before the login timeout

Hi, We have by company policy a Global Protect VPN login timeout of 24 hours. However, with Cisco Anyconnect users got a notification at least 1 hour before they were going to be disconnected. I am checking to see if there is a way to have some sort of notification before they get disconnected? I have been trying to fine documentation and artic...

11618 - TCP/IP SYN+FIN Packet Filtering Weakness resolution

VA scan flag out the below for GP Portal URL 11618 - TCP/IP SYN+FIN Packet Filtering Weakness-SynopsisIt may be possible to bypass firewall rules.DescriptionThe remote host does not discard TCP SYN packets that have the FIN flag set.Depending on the kind of firewall you are using, an attacker may use this flaw to bypass its rules. See Alsohttps:...

How to launch GlobalProtect App with its URL scheme/deeplink on iPhone?

Hello everyone, I have a question whether or not GlobalProtect Mobile App provides a way such as Url scheme/deep linking/universal link which is able to be launched by the custom website on safari or other mobile apps. Our business background is: Users have installed GlobalProtect mobile app on iPhone. Before they logged into a custom intern...

Moiradu by L0 Member
  • 1584 Views
  • 0 replies
  • 0 Likes

GlobalProtect: Using an alternative port

Good morning. I require a bit of assistance for deploying GlobalProtect with a twist. A client of ours wishes to deploy Global Protect but unfortunately, they also have a Web Facing application using SSL on the same ISP interface. This is unfortunately causing issues since GP also makes use of 443(SSL) and due to the DNAT rule in place for t...

MGiusti by L0 Member
  • 3099 Views
  • 1 replies
  • 0 Likes

Browser behavior when using SAML authentication with GlobalProtect

We recently changed from using our internal AD for authentication to GP external portal/gateway to using SAML authentication with MFA using Azure AD. The testing for company users was fairly consistent but involves a lot of browser activity (prompt for AD creds, MFA prompt and two GP prompts). After a few successful logins this process usually...

  • 2069 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks