This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

What am I doing wrong with Global Protect updates?

I am currently running GP 5.2.7 on a PA-3220 on 9.1.12-h3 and 99% of the time it is fine. I have an issue with a few of my developers with SQL Server Management Studio dropping connection.....but only SSMS. Was going to try newer versions of 5.2.x and see if that helps them out - just installing manually opposed to pushing through the firewall. ...

1.png
2.png
3.png
4.png

GlobalProtect Pre-logon tunnel rename doesn't work as expected

Hi Guys, We are currently running PanOS8.1.1 have some issues with global protect pre-logon. I have configured pre-logon as per below article.https://live.paloaltonetworks.com/t5/Configuration-Articles/Basic-GlobalProtect-Configuration-with-Pre-logon/ta-p/136131 Problem we have is pre logon works as expected, however when user logged in to the c...

Namalw by L1 Bithead
  • 14654 Views
  • 8 replies
  • 1 Likes

Getting uptime information for a GlobalProtect connection?

Hello, Is there a way (programmatically) to access current uptime for an active GlobalProtect connection? I need to warn the users of my program well before (15+min) the connection times out. We are radiologists, and VPN dying in the middle of reporting of an urgent case causes all kinds of problems and lost work. Uptime under GP Settings refres...

BrankoB by L1 Bithead
  • 4677 Views
  • 4 replies
  • 0 Likes

Global Protect Pre-logon does not consistently switch IP pools

We have a client with Global Protect Pre-logon, which assigns different IP pools to the Pre-logon user than to the known client. Sometimes we see the connection get the Pri-logon IP and then switch to the known client IP, but other times we see it hang onto the Pre-logon address. Firewall PAN-OS 8.1.15-h3Client version 5.1.5 Any suggestions on w...

GlobalProtect VPN vs Clientless VPN

Hello Bros, Currently, we are using GlobalProtect VPN, which is working great.and now we are discussing of using the Clientless VPN supported by the PanOS version 10 and later.Do you recommend using the Clientless VPN over Globalrotect VPN? what is your recommendations regarding using the clientless VPN if you recommed using it ov...

Resolved! Configuring GP DNS in Agent/Client Settings vs Agent/Network Services

Is there any difference configuring DNS in Agent/Client Service/Client Config versus Agent/Network Service. I initially setup in Agent/Network Service and is allow for a primary and secondary DNS server to be specified. The problem there is it limits me to two and I'd like to have a third. Agent/Client Service/Client Config has youenter DNS ser...

palomed by L3 Networker
  • 3653 Views
  • 1 replies
  • 0 Likes

When attempting to log-in to GlobalProtect, a user will hit the enter key and the the username/password disappear. They have to physically click login

Hello, As the title says: when attempting to log-in to GlobalProtect, a user will hit the enter key and the the username/password disappear. They have to physically click login and it'll work. We leverage DUO authentication as well but it only acts like this for GlobalProtect signon. I'm curious if this is a bug or if there is some sort of reged...

equiknox by L0 Member
  • 4822 Views
  • 3 replies
  • 1 Likes

Run Diagnostic Tests for these Web Destinations

In watching the video below about global protect troubleshooting, them mentioned a feature "Run Diagnostics Tests for These Web Destinations". Is this test available whether or not you are using Prisma access and Data Lake? We're not using Prisma nor Data lake. But it would be nice to have diagnostics appear in log bundles referencing specific i...

palomed by L3 Networker
  • 1919 Views
  • 0 replies
  • 0 Likes

Failing to connect to portal for particular user on Windows after upgrade

Hi, I recently started having issues with my account connecting from Windows after an upgrade. The account logs in fine still from MacOS. I've tried multiple Windows machines and all exhibit the same behavior. Creating a new test account worked from the same Windows machine. The device is a PA-3220 and was upgraded from 10.0.0.5 to 10.0.1.3. The...

Picture1.png

Can't access most of the websites after connecting to globalprotect VPN on Linux

Hi, I have installed GlobalProtect_UI_deb-5.2.4.0-14.deb using the command 'sudo dpkg -i GlobalProtect_UI_deb-5.2.4.0-14.deb' on my Ubuntu system. Then I am using $ globalprotect$ launch-uiconnecting to the portal. But after connecting to the VPN I am not able to access most of the websites like Github, Stackoverflow, and many others. Below ar...

Pre-Logon for Company Devices Only

Happy Saturday All! Here is my scenario: We have employee and vendor GlobalProtect connectionsEmployees need to Pre-Logon and Always on with a locked-down Client based on AD GroupVendors do not need to Pre-Logon and then can have an On-Demand connection with NO locked-down Client based on AD Group Current Configuration Portal:Pre-Logon: mach...

Authentication Cookies Generation and Authentication

I am trying to a set up an implementation of pre-logon, then SAML w/ Client Certificates. Utilizing a machine certificate I can configure how I want with no issues, but using only a client (user) certificate, pre-logon doesn't work, which is expected since the certificate is not in the computer's personal store, but the user's. In order to comba...

GP Debug Help

We've been having difficulty with a particular use trying to connect with cert based authentication. What's this telling me "failed to get portal config", "restrore last portal config from file" etc?Is there a good resource on these debug message generally? (P4512-T6564)Debug(7054): 04/22/22 12:53:29:449 prelogin to portal result is (null)(P4512...

palomed by L3 Networker
  • 1825 Views
  • 0 replies
  • 0 Likes
  • 2062 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks