How to configure G-Suite SAML authentication for Global Protect

I am trying to set up G-Suite SAML authentication for Global Protect. I followed the directions outlined here to the letter: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g0000008UIjCAM

I get the following errors:

On Google Chr

Windows11 fails to connect to Portal with client certificate authentication enabled

I finally got combined certificate and user/pass/MFA authorization for our always-on VPN clients to multiple firewalls (cert auth to the Portal for valid asset checks and auto-login to trigger internal host detection, user/pass/MFA auth to the Gatewa

x-auth support

I am trying to enable x-auth support on my Global Protect Gateway I configured and under Agent>Tunnel Settings , I do not have the "enable x-auth" option, only "enable IPSEC" IS this a GP licensing issue? I read the doc for that and it doesnt mention

GlobalProtect 6 Connection failed on macOS login, then auto-connects

Installing GP 6.0.1 on macOS Monterey 12.4. I can login and save my credentials, everything works. On restart, GP auto starts and tries to connect.  It always shows 'Connection Failed', then 'Connecting', then 'Connected'. the whole process takes abo

Global Protect Azure AD MFA

I've recently setup and succesfully tested a new portal and gateway with Azure AD MFA and the global protect app.  Currently i can log into my iphone app and I receive the portal auth, (LDAP) and then get prompted for the Microsoft sign in followed b

Clear Global Protect Cached credentials.

Hi,

Is there a way to clear cached Global Protect credentials on a Windows 10 machine? The user has put in the wrong username and every time it goes to reconnect it reverts to the old credentials even though the new ones are successful. Client versio

need to reconnect

hey all, 

i'm having an issue whereby when i'm connected to a hotspot the GP connects fine but when switching to a wireless network it fails. my workaround works as below everyday. please let me know which log file you need for this type of issue.  

New GP Client Install

I am installing the GP client 5.2.11 on freshly imaged Windows 10 21h2 devices.  Once the client is installed the users are not being logged in by SSO.  In the logs it says that the SSO credential capture fails.  It has worked previously with older G

Third party SSL cert for Global Protect

I have a third party (Network Soluitions SSL cert that expires in 2023 but validation not past July 22nd of 2022.  What is the process from start to finish with the cert and on the firewall?  I'm assuming I need to have NS reissue another cert with a

Solving any script issues on GlobalProtect

Go to Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Palo Alto Networks\GlobalProtect\Settings

Change the Reg_SZ “Defaul-Browser” including the value YES like in the picture below

*You can also create a script using Reg Add to change the value to YES

It is usefu