GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
GlobalProtect Discussions
GlobalProtect discussions offers topics about our network security for endpoints that protects your organization's mobile workforce. This area is dedicated to GlobalProtect discussions to help you answer questions.
About GlobalProtect Discussions
Welcome to the GlobalProtect discussion area! Here, you can engage in conversations about GlobalProtect, explore new insights, and stay updated on ongoing discussions. Check back regularly for the latest updates and community insights on GlobalProtect.

Discussions

GP with Certificate base authentication and LDAP, userid not visible in global protect logs

We have setup wherein user get certificate base authentication on pre logon(machine authentication), When user logged into machine, it must shift from machine name to userid. this transition is not happening. We also don;t require GP client login window popup. It must derive userid and password from windows login. Authentication table we have LD...

Set up a test Internal Gateway for User-ID logging

Hi everyone planning to set up an Internal Gateway so we can log User-ID and an internal host detection to automatically disable VPN when in the office. We are planning to set up an internal gateway strictly for a test OU to ensure that the changes we make won't disrupt the business. I set up a loopback address from a reservered dhcp(we use Palo...

RPerez481389_0-1783920681442.png
RPerez481389_1-1783920986077.png

Brand New Deployment - GlobalProtect vs Prisma Access Agent

About to deploy a set of 1410s and trying to get some feedback on using standard GP vs going w/ PAA? The firewalls will be managed by an on-prem Panorama VM and be using a cloud provider for SAML authentication. I think I've read PAA will support using Panorama as the front-end and a standard NGFW as the device the vpn connects on. Wanted t...

DJ_1924 by L2 Linker
  • 98 Views
  • 1 replies
  • 0 Likes

Unable to make GlobalProtect Changes

Hi all, We recently upgraded to 11.2 and noticed that when trying to make changes on any of our Globalprotect portals I see an "Operation Failed" and it calls out the clientless-vpn (when we don't use or have this configured). This issue is also seen at one of our branch sites, PA-1420 on same OS11.2.10-h3. Thanks

BRana_0-1783716228428.png
B.Rana by L0 Member
  • 92 Views
  • 1 replies
  • 0 Likes

GP 6.2.8-C982 causes popups on Windows, no Release Notes?

We just rolled out the latest 6.2.8 update (previous version C948), and since it's been installed, users repeatedly get certificate confirmation popups to connect the client. The previous client version never did this, the popups are not just happening on initial connection, but multiple times as users tabs around applications. Is this a known i...

M.Studte by L1 Bithead
  • 490 Views
  • 2 replies
  • 0 Likes

Global protect with LOOPBACK Interface

GlobalProtect Agent Connection Failure with Custom Port (23590) - Loopback Gateway Issue I have a Palo Alto NGFW (public IP: 80.75.164.100) connected directly to the internet with a DNS record (vpn4.example.com) pointing to this IP. I’m trying to configure GlobalProtect Agent to connect via a custom port (23590) instead of the standard port 443,...

m.waked by L0 Member
  • 238 Views
  • 1 replies
  • 0 Likes

GlobalProtect Mac Client ENDLESS POPUPS that TAKE FOCUS from other apps

"Connection FailedThe network connection is unreachable or the portal is unresponsive. Check the network connection and reconnect." This pops up on my screen every minute or two, and immediately begins capturing keyboard input, and because the app is mandated by my sysadmin and not configured by me, there's also no way to force-quit it or stop i...

Global Protect getting stuck on connecting loop

We are facing an issue sometimes the global protect gets stuck on connecting loop while we connect to the global protect it redirects to the default browser for authentication and shows authentication successfull but global protect gets stuck on the connecting loop and it does not connect only showing retrieving config from the portal. But somet...

n.bhat by L0 Member
  • 4843 Views
  • 4 replies
  • 0 Likes

Looking for documentation on how to set up an internal GP gateway for User-ID

This is a PA environment I have inherited and I don't have a PA background, most everything was already set up....I just maintain security rules, NAT, etc....basic stuff. Been having quite a time with our Macs and User-ID through Active Directory and using the App-ID Agent on a server. After a few cases and frustrated users, think we need to ...

PanGpHip in the official ARM64 build

Hi. I'm trying to install GP on Raspbery PI 4b (aarch64, debian trixie).Our admin downloaded PanGPLinux-6.3.3-c31.tgzInside there are: GlobalProtect_deb-6.3.3.1-638.debGlobalProtect_deb_aarch64-6.3.3.1-638.debGlobalProtect_deb_arm-6.3.3.1-638.debGlobalProtect_rpm-6.3.3.1-638.rpmGlobalProtect_rpm_aarch64-6.3.3.1-638.rpmGlobalProtect_rpm_arm-6.3.3...

Global Protect Android client failing with certificate error after upgrading PAN-OS

Dear all, I have a strange error after I upgraded my firewall to PAN-OS 11.1.15 to fix a GP vulnerability. (18990)06/04 17:44:57:208734 - PanKeyManager: Issuers: CN=ixxx, DC=ixxx, DC=local(18990)06/04 17:44:57:208841 - PanKeyManager: Use Cert: gp_user_new(18990)06/04 17:44:57:208883 - PanKeyManager: getPrivateKey for alias: gp_user_new(1899...

Resolved! GlobalProtect VPN fails to launch on Linux [Solved]

As an Ubuntu desktop/laptop admin at my company, I've had my fair share of gripes with Globalprotect VPN for Linux. So I wanted to share my home-grown fixes for various issues I've encountered. Yesterday, I encountered another such issue which the developers have kindly created for me. The issue is that Linux users with a UID > 60000 cannot l...

jamesps by L1 Bithead
  • 677 Views
  • 1 replies
  • 1 Likes

Semi-Disable Global Protect on Mac

I have a work MacBook Pro, that our IT department have installed GlobalProtect on, which sits in the menu bar I use the (greyedout) icon to log in to use it when I work away from the network, however, when i am connected to the work wifi network (or am docked) it keeps popping up the NOT CONNECTED window, meaning that as I am typing, that text g...

ab0166 by L0 Member
  • 354 Views
  • 1 replies
  • 0 Likes
  • 1679 Posts
  • 68 Subscriptions
Top Solution Authors
Top Liked Authors
Labels