GlobalProtect - Azure AD SAML Integration - Login inconsistent

Hello!

We have Azure AD setup and running with the Palo.  It works....sort of.

The issue.  When using Microsoft Edge (chromium/latest version) as the default browser, when global protect goes to connect, the login will just hang on trying.  If you cli

Global Protect - PreLogon/SAML with Cert Revocation

Hi All,

Does anyone have a Globalprotect PreLogon setup with SAML authentication and CRL enabled?

Having issues with this and have it raised with TAC but thought I'd reach out to the community.

It's worth noting that we have a parallel setup using LD

Global Protect 2FA O365

Hi All,

Quick set of questions?

We have a Globalprotect deployment on PreLogon for one of our user sets. Accompanying this we have deployed a separate gateway/Portal for Clientless VPN. Both Authenticating with LDAP. They have requested 2FA for their

Client successfully connects and get's IP but is unable to communicate to remote machine

I managed to get GP VPN setup on my PA220 and get a Windows workstation to connect to it.  It gets assigned one of the IP addresses reserved for VPN clients.  When I attempt to connect RDP to a remote machines from this VPN client it fails.  The VPN

VPN connection failure for mobile hotspot

Global Protect VPN worked fine till now with mobile hotspot or wireless dongle. From past 3-4 days, I am not able to connect to the gateway at all. Even the login popup doesn't come up. It works with broadband but not with wireless. Can someone help?

Setting up multiple SAML Azure AD identity providers on palo alto

I want to add a new Azure AD SAML identity provider which I will be using to create a new authentication profile. This profile would be used for creating new global protect portal using same gateway but allowing only set of access routes.

I wanted to

Multiple Portals/Gateways

GP on the fw is setup and working. I have a group of users i need to isolate from everyone else - most of the time.So if they use the url vpn1.mydomain.com they get IP Pool X and specific X policies. If they use url vpn2.mydomain.com they get IP Pool

Parsing GlobalProtect gateway multi user configs failure

I have different purpose (new certificate with different CN) to create a new/parallel portal&gateway (to keep the change transparent for end user/and to keep easy revert back possibilities in worst case), so when i try to create a new por+gw by addin

BSOD when connected and a weird relationship with WindowSearchBing

We are facing the issue only when users connect to the VPN using GP. 
I don't know what is the root cause but all logs and errors are related to Windows search.

I have other pcs with errors related to fwpkclnt.sys and netio.sys.

Is there anyone else wi

Knowledge sharing: community account fix and Globalprotect troubleshooting/investgation updated/edited article

My old account was fixed by Palo Alto life community following article https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClNHCA0 , so I am resharing the post for "Knowledge sharing: Globalprotect troubleshooting/investgation.

Doubt if global protect can be integrated with WSUS

Hello team,

Actually, We have Globalprotect checks the status of Windows patches on users computers and informs the user if any are missing.

We update the computers through WSUS. Globalprotect seems to get the missing patches from a source other than

GlobalProtect issue: DNS resolved with Public-IP instead of Private-IP

Hello,

We have an URL (for exp. sharepoint.mydonain.com) directly reachable on our internal network, with a Private-IP, but also reachable from the internet, with a Public-IP (of course, the public-IP is not reachable from the internal network  ).
It