This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

Start a conversation

Global Protect and Keyboard issues

Hi, We have a user with Global Protect 5.2.10-6 installed and they cannot type in their password when unlocking their screen or logging on. They have an external keyboard, the laptop is on a docking station. When we disable Global Protect, the external keyboard works perfectly. The Keyboard on the laptop works all the time, but it's not great i...

RPC_binding error when trying to print since GlobalPotect is running

4 weeks ago GlobalProtect was installed in our University and from two Macs (one Monterey 12.2.1) and (Big Sur 11.6.4) I am unable to print on our network printer (smb://), a Canon printer.When trying to print the printer is paused and the error log says:"rpc_binding_set_auth_info"Our informatics folks keep telling me it is my Mac (the Monterey ...

Global Protect VPN with 2 ISP (Active Active)

Hi Guys, My customer has GSLB ( 1 domain 2 ip address).Example. nslookup vpn.test.com Name: vpn.test.comAddresses: 10.10.10.254 20.20.20.254 Is it possible to config GlobalProtect VPN with 2 ISP, 2 Portals, 2 Gateways but same certificate profile and same External Gateway name? But when client connect to each Gateway they will...

gpvpn.png
Ustapon by L1 Bithead
  • 6053 Views
  • 7 replies
  • 0 Likes

Resolved! Global Protect mixed internal and external gateway

hi everybody, i've some questions regarding global protect client and mixed environment internal / external we have a internal campus networking infrastructure with lan and wlan (2 different subnets), so the laptop changes the ip-address if traveling around the campus, wired or unwired... so we have installed global protect client for internal u...

Odd GlobalProtect issue

Just completed an install this last weekend and received a report that a user wasn't able to connect to GlobalProtect. I started with the normal troubleshooting and quickly realized this was going to be something more detailed. The user that initially complained said that she wasn't able to connect to GP. I asked them to just try to hit the port...

Azure SAML Authentication with multiple PAs

Hey, We have a GP configuration with 8 GP Gateways and 2 of them are acting as a GP Portal for backup.We are using SAML authentication with Azure and wanted to know how to you deploy GP with SAML authentication in large scale.Currently I have configured 3 SAML apps on Azure one for each PA device but I think it is not the right configuration sin...

screenshot.png
minow by L4 Transporter
  • 13181 Views
  • 10 replies
  • 0 Likes

Split Tunnel Domain & Application Cisco Umbrella Issue

We have one GlobalProtect Portal and 3 Gateways. This one Gateway is version 9.0.9-h1, and the GlobalProtect client version is 5.2.3-22. For testing, on this one Gateway, I enabled Split tunnel Domain and Application for *.webex.com and *.zoom.us. I'm testing from home with two laptops, and both are connected to this same GP Gateway. Laptop 1 do...

GP with split tunnel and one single Domain added with a specific Port not working

In GP the configuration was to have split tunnel with RFC 1918 Subnets only, there is one *.something.com ( Internet service ) added in the include domain and with a specific port 1443. But there are other traffic also started coming through tunnel with different ports, not only 1443. Any reason for it, The include domain with port won't work he...

GlobalProtect machine cert pre-login OR SAML

My customer switched from a cloud URL filter to PAN-OS on-prem. For remote users to be filtered, they must be connected to the network in this case via GP. To force those endpoints to always be protected, the VPN must be always-on and ideally users prevented from disabling the client. Without pre-login or cert auth, the endpoint is unprotected u...

mb_equate by L3 Networker
  • 2591 Views
  • 0 replies
  • 0 Likes

GP could limit AD account on computer

hello, I have a question , Can the GP solution solve the following scenariosThe computer of terminal A has joined the domain (AD). one user login to the terminal with domain account a, and then restricts the user to dial GP with account a instead of other accounts ?

Felixcao by L3 Networker
  • 1476 Views
  • 0 replies
  • 0 Likes

Group Policy not applying to laptop connected to VPN

I haven't been able to get Start Layout GPO to work for laptops that connect over VPN. I followed the Use Connect Before Logon guide to get my laptop connected to our domain before signing into a user account but for whatever reason the Group Policy is still not changing my settings. https://docs.paloaltonetworks.com/globalprotect/5-2/globalprot...

GRattu by L0 Member
  • 3490 Views
  • 0 replies
  • 0 Likes

GlobalProtect MFA with Kerberos and RSA

Hello everyone, Palo Alto noobie here 🙂I am trying to configure GlobalProtect VPN with MFA authentication using Kerberos authentication protocol against AD and RSA hard tokens.I have configured the GlobalProtect portal and gateway using different loopbacks. For the portal authentication I am using only Kerberos while for the gateway authenticat...

netgirl by L0 Member
  • 2181 Views
  • 0 replies
  • 0 Likes
  • 2069 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks