This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Separation of profiles for authorization and authentication in GlobalProtect

Hello friends! Help me please.I need advice on authentication and authorization when connecting to a GP.Is it possible to separate these roles? For example: authenticate using SAML.And then check this user for belonging to groups in LDAP, and depending on these groups, send him to the gateway / send him settings / apply policies. In general, aut...

GlobalProtect Always-on User Experience

Hey all - We're currently in the beta-testing phase of our GlobalProtect implementation, and I have a couple of questions around 'best practices' to ensure a good user experience. First, our setup: - PAN-OS 10.1.5-h1 - GlobalProtect client v5.2.11-10 (Mac OS (12.x) & Windows 10) - Pre-logon via machine-based certificates - User logon via Ok...

GlobalProtect License Portal or GP license Gateway?

Hi all, I need a clarify about GP Portal license and GP Gateway license. Which one is needed for clientless VPN?I have this PA-850 and running on PanOS 9.0.13, on support portal it shown that I have GP Gateway license active but GP Portal license is expired. As far as i know we only need Globalprotect license to use more features, but the suppo...

febriantofitranto_0-1643298903445.png

Strange DNS behavior - Mobile Users—GlobalProtect - Panorama Managed Prisma Access

Hi everyone, I had a bit of a strange behavior regarding DNS for mobile users, and wanted to verify if this was working as intended. IP addresses are made up Info on the infrastructure: - Panorama Managed Prisma Access. - Mobile Users - GlobalProtect. - Using both On-Premises and Prisma Access gateways (Manual). - DNS for internal domains ...

KasperT by L1 Bithead
  • 1775 Views
  • 0 replies
  • 0 Likes

Global protect SAML with azure need to make the joined PC to access without going to authentication other than to ask for username password via webpa

Global protect SAML with azure need to make the joined PC to access without going to authentication other than to ask for username password via webpage. I done the SAML and enabled the Sigle sign on from agent tab to be ON so the global protect get the username password when user login but the issue when the not joined PC tried it will get the...

Resolved! Global Protect Force Gateway Selection

I am trying to set up GlobalProtect and am having issues with client gateway selection. I have a single portal and will have two gateways set up. One uses SAML auth (general users) and the other one uses DUO auth (for the IT dept). Both are set to be on-demand. I want all users to be presented with both gateways initially, and then clients ...

SAML Azure Global Protect Redirects

Hi, We use RADIUS (DUO) for our Global Protect clients authentication but now I have configured SAML. I have also enabled MFA in Azure. Everything works properly as I am able to access all the company resources remotely via GP SAML authentication. However, I don't get any redirects to Microsoft/O365 portal to enter my signin credentials as it ...

MAliRaza by L0 Member
  • 2033 Views
  • 0 replies
  • 0 Likes

Global protect MAC OSX connection problem

Hi, I have an issue with connecting globalprotect on a Apple Macbook (macOS Monterey Versie 12.4). If i connect to our VPN adres it keeps connecting forever. Weird thing is i have created an other user on the macbook & it works fine there. Only keeps connecting forever on my original profile. Already reinstalled the app multiple times and do...

Recommended config for Globalprotect on Azure active-active LB sandwich architecture?

We are running two active-active VM-300s at Azure using the common firewall architecture reference doc (two Azure standard load balancer sandwich). Now looking to enable Globalprotect gateways and was wondering what best practice would be for external access - use a single address on external Azure load balancers and load balance to VM-300s with...

GlobalProtect VPN client v6 for macOS usability feedback

Dear developers, As a Mac user, I am enjoying the consistent userinterface, behaviour and keyboard shortcuts that many well-written macOS applications offer. So I’d like to give you some constructive feedback on your new VPN client, so you can offer your Mac users an even better secure environment than currently is available. First of all, a...

GeeJee by L0 Member
  • 1456 Views
  • 0 replies
  • 0 Likes

PanGPS consumes much power when MacBook hibernates

I'm using the GlobalProtect in my MacBook Air. When I close the laptop lid, the MacBook will enter deep sleep state, which consumes very little power. But after I installed the GlobalProtect, the MacBook will consumes a lot of power 5 days after I close my laptop lid. I checked the console, it is PanGPS initiates network connection after 5 days ...

Snipaste_2022-06-24_22-21-16.png
Snipaste_2022-06-24_22-17-10.png

Resolved! Client VPN Traffic

Hi, For security reasons, I need to ensure that all client VPN traffic is going down the VPN to the Palo Alto firewall. I need to prove that to the customer that all traffic from the mobile devices is all going down the VPN tunnel and egressing out of the firewall. How can I achieve this? Thank you.

  • 2062 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks