GlobalProtect Discussions | Palo Alto Networks

Assigning a static IP to a Global Protect user

Is there a way to assign a static IP to a global protect user? I have a couple security policies that specify userids in the source, but the policies are not getting picked up. They are dropping to the default deny. I verified that the userid show

...

Global Protect HIP check severity numbers (Windows)

The Global Protect documentation for severity numbers is a little incomplete. I opened a TAC case and got the full breakdown and wanted to document it.

Severity Value Rating

-2 (PATCHMANAGEMENTAGENT

...

Global protect client lauching several times in windows

Hi team,

One of our clients are using global protect client. Recently they are facing a issue like the global protect client is launched several times in the system tray (right side bottom window ) . Help me on this with the valuable discusions.#glob

...

GlobalProtect "Connect Before Logon" not working with Duo SSO

We recently implemented Duo Multi-Factor Authentication (MFA) and have configured GlobalProtect to use Duo's SSO service (which in turn Duo uses Azure AD for authenticating the user). We are using SAML for authentication, so when the user clicks 'Co

...

Windows 11 22H2 device guard Radius MS-CHAPv2

Hi,

The newly released Windows client update 22H2 enables device guard by default which will block MS-CHAPv2 for radius authentication use.

We currently use this for our GP configuration since radius auth supports users changing expired passwords v

...

02322099

Hi Team,

We have a scheduled session with client at1.00 pm IST for the case 02322099. but end of the moment TAC engineer is informing us to reschedule the session. as this is a scheduled session we can't reschedule it kindly align another engineer

...

Allow User to Uninstall GlobalProtect App option for MAC

Hello guys,

The customer wants to restrict users from deleting GlobalProtect.

As shown in the figure below, I can configure it so that it cannot be uninstalled for the window user, but I cannot find the relevant setting for MAC.  

Does anyone know a

...

Global Protect - Connect before logon Questions

Good Afternoon,

I have two requirements that I am trying to meet with Global Protect:

1. Pre-logon for a new or existing remote user that has never logged onto a new pc. I set this up and it seems to be working fine and smoothly transitions the

...

Reset windows10 password without connecting on-prem domain controller

Is updated password will sync to device, without connecting on-prem domain controller.

Global protect client upgrade issue

When Global protect client upgraded from 5.2.10 to 5.2.12 for MacBook, global protect clients enter cycled installation. Automatically disconnect ssl vpn--->prompt to upgrade---》automatically exit global protect client--〉open global protect client--

...

Global Protect Virtual Adapter not set up correctly due to a delay, then gateway unreachable

Hi everyone,

Running into this issue, I saw solutions in past threads like this one.
https://live.paloaltonetworks.com/t5/globalprotect-discussions/the-virtual-adapter-was-not-set-up-correctly-due-to-a-delay/td-p/382464
This did not resolve the issue f

...

Force GlobalProtect Portal refresh of connected clients?

Is there a way to force the refresh of the portal agent config on connected clients? We have multiple portals and multiple gateways for VPN load distribution and fail-over capabilities. When developing/testing changes to the GP VPN I will often take

...

After upgrade PANOS from 10.0.6 to 10.2.2 source username showing as different format.

Hi,

Need help on below.

After upgrade PANOS from 10.0.6 to 10.2.2 source username showing as different format. bellow is the screen shot from log for reference

On above log discovery\mole... is the correct format and molemo2 is different format.

G

...

getting multiple DNS entry on DNS server who are connected to global protect client

getting multiple DNS entry(home networks and other interfaces as well) on DNS server who are connected to global protect client

GlobalProtect SAML Not working

Hi

We have recently deployed SAML authentication on our existing GP environment and this is working fine on most devices. Currently we are in a migration phase, which means only that the gateway is using SAML and the portal is still using on prem A

...

Discussions

Assigning a static IP to a Global Protect user

Global Protect HIP check severity numbers (Windows)

Global protect client lauching several times in windows

GlobalProtect "Connect Before Logon" not working with Duo SSO

Windows 11 22H2 device guard Radius MS-CHAPv2

02322099

Allow User to Uninstall GlobalProtect App option for MAC

Global Protect - Connect before logon Questions

Reset windows10 password without connecting on-prem domain controller

Global protect client upgrade issue

Global Protect Virtual Adapter not set up correctly due to a delay, then gateway unreachable

Force GlobalProtect Portal refresh of connected clients?

After upgrade PANOS from 10.0.6 to 10.2.2 source username showing as different format.

getting multiple DNS entry on DNS server who are connected to global protect client

GlobalProtect SAML Not working

Panorama managed - Global protect SAML cert renew - IDP xml import wrong expiry

Gloabl Protect -Gateway selection

SPlit tunneling issue on GlobalProtect

Global Protect VPN only on domain joined devices

GP User-logon (Always On) doesn't connect

Re: Packaging Global Protect

Re: Adding PA DR site globalprotect SSL-VPN gateway

Re: What does it mean Stage and Event GlobalProtect Fields?

CSP unsafe setting detected by scanner on PA LSVPN gateway

Re: PAN-OS 9.1 GlobalProtect CEF Format

Unlock your full community experience!