This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Authentication Cookies Generation and Authentication

I am trying to a set up an implementation of pre-logon, then SAML w/ Client Certificates. Utilizing a machine certificate I can configure how I want with no issues, but using only a client (user) certificate, pre-logon doesn't work, which is expected since the certificate is not in the computer's personal store, but the user's. In order to comba...

GP Debug Help

We've been having difficulty with a particular use trying to connect with cert based authentication. What's this telling me "failed to get portal config", "restrore last portal config from file" etc?Is there a good resource on these debug message generally? (P4512-T6564)Debug(7054): 04/22/22 12:53:29:449 prelogin to portal result is (null)(P4512...

palomed by L3 Networker
  • 1859 Views
  • 0 replies
  • 0 Likes

Global Protect False Negative Status "Portal Failed"

User running Global Protect 5.2.5-66 on Win 10 on Surface Pro was getting message "Portal Invalid". But when our tech remoted into her machine, he was able to see she could reach all internal resources. Any thought as to why GP would show Portal Invalid when actually connected and passing traffic?

palomed by L3 Networker
  • 1599 Views
  • 0 replies
  • 0 Likes

GlobalProtect Portal authentication by certificate fails with "Valid client certificate is required"

I have been trying for some time to get a mutli-stage GP login working in an always-on VPN. Going from an existing user/pass login to both the Portal and Gateway (with third party MFA over radius, cookies to prevent dual auth request), to a certificate login to the Portal (for automatic login/updates of GP client configs and immediate internal h...

Resolved! Global Protect VPN installation on Mac OS

Hi. My IT provider can't assist in setting up / configuring my Global Protect VPN for WFH. We are talking Vodafone Business here, and for over a week, we have been unsuccessful, had various reinstallations and the message is still "Gateway GP-Gateway: the network connection is unreachable or the gateway is unresponsive. Check the network connect...

JFontes by L1 Bithead
  • 4325 Views
  • 3 replies
  • 0 Likes

Trying to set access rules for GlobalProtect VPN

We're looking to set up access rules/controls for our VPN, and I'm having some trouble figuring it out. We already have our gateway and portal set up, and have it whitelisted to only allow specific users through. However, we want to set up a second portal/gateway for our admins to use, separate from our users. My problems stems from where to beg...

Send message to user after connecting

Hi all,I'm changing the portal external gw of my company.I've sent an email to our users but I'm sure they'll never read it, so on switch date they will start calling our help desk because "vpn has stopped working".Is there any way to send a message after the user connects to global protect with a custom message like "remember that...."?Thanks

Poledi by L1 Bithead
  • 3816 Views
  • 3 replies
  • 0 Likes

ip pool usage snmp monitoring

Hello, I want to monitor the usage of each ip pool for global protect with snmp, to have an alarm or something when the pool is reaching limit, i didn´t find an oid for this purpouse, but maybe there is another way to do it, anyone have an idea to make this possible?.

BigPalo by L4 Transporter
  • 2313 Views
  • 1 replies
  • 0 Likes

Global Protect w Azure SAML/MFA won't trigger logon dialog box

On my Cisco ASA I have SAML configured and when I logon I get prompted with a browser dialog box for user name and password which then triggers an MFA token to my smart phone. But for Global Protect the client is going straight to Authentication Failed without prompting me for user name and password - neither within the Global Protect client nor...

palomed_0-1649870982193.png
palomed by L3 Networker
  • 6127 Views
  • 0 replies
  • 0 Likes

Global Protect Logs Cookie Expired Before Expected

I am trying to understand how I could have two Global Protect cookie expiries within a half hour of successful certificate authentication. 7:04 Certificate Auth Successful and IP assigned4/12/2022 7:04 portal-auth login Certificate LAPTOP-ADHDS8HOL US ACME-99918411157 55.55.58.239 0.0.0.0 0.0.0.04/12/2022 7:04 gateway-getconfig configuration SS...

palomed by L3 Networker
  • 2669 Views
  • 0 replies
  • 0 Likes

Problems with Android through SAML in global protect

Hello,When trying to log in through SAML in global protect, the password typing is very slow, taking about a minute to be able to type it. Affected devices:- Samsung SM-T585/ Android 8.1.0- Samsung SM-T595/ Android 10Global protect version:Global protect version 5.2.11 (1521109)Any idea? Can anybody helps me?

Alpalo by L4 Transporter
  • 1924 Views
  • 0 replies
  • 0 Likes

GP - Split tunnel is working like full tunnel

Hello All! I configured the GP to be a split tunnel. When I connect, I can access internal resources, but no Internet access. Normally, a default GW gets assigned of 0.0.0.0 on the PAN adapter I thought. There's no GW. External traffic is trying to route via the Internal's ISP and not it's own.

DJ_Palo by L1 Bithead
  • 2828 Views
  • 2 replies
  • 0 Likes

Global Protect on MAC stuck at Portal Prelogin

Hi !I am trying to connect to GlobalProtect via Mac - on Windows (same user) everything works fine. Pressing the Connect button on Mac shows the Azure Login + 2MFA appears as expected but as soon as I enter the Codea blank screen appears and Logs are showing the following:"gp_version":"5.2.9-35","error_stage":"Portal pre-login","error":"Could no...

schimeha by L0 Member
  • 5768 Views
  • 3 replies
  • 1 Likes
  • 2079 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks