Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

MacOS Sequoia & Global Protect

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

MacOS Sequoia & Global Protect

L1 Bithead

Hey Palo Alto,

EXPLAIN WHY... "Your device doesn't meet security requirements."

Then possibly there's something I can do.

OR LET ME TURN OFF seeing this EVERY TIME I LOGON TO VPN.

 

PALO ALTO controls this security check, OR my company does...

EITHER WAY... the software works...

...just LET ME TURN OFF THE POPUP!

GP_SecReqPopup.jpg

 

 

 

 

 

 

 

 

GP_About.jpg

 

1 accepted solution

Accepted Solutions

L1 Bithead

Thank-you for the info about the product, and letting me know Palo Alto calls these popups "HIP notifications".

This is similar to the crap notifications that Cisco puts in their VPN software.

 

Anyone developing this type of software, should note:

 

The User doesn't get to decide security software implemented at (probably all) corporations.

The User doesn't get to decide the configuration of the security software.

The User in most cases doesn't get to decide computer hardware on which the security software is installed.

Therefore warning messages sent 100+ times a month as popups to the User, are at best, aggravating.

The User has no control over their situation, yet the software developer is notifying the User.

Since all this security software is centrally controlled, the notifications need to be sent to the Administrator 100+ times a month, and not to the User.

Any notification on the User's end of things is next to useless.

 

Now for the case where people say... then User should notify the Administrator... okay... say they do...

The usual response is... the security software isn't going to change, the configuration isn't going to change, and the hardware isn't going to change... that's 99% of the cases usually... so we're back again to useless notifications popping in front of Users.

 

Then there's those of us who choose our hardware... I am not going backwards to use antiquated crap hardware just to meet some configuration's outdated specifications.  This industry turns on dime.  Nor am I going to waste my time bothering with endless discussions with people who are making whimsical security decisions to satisfy checkboxes to be able to say they've completed another checkbox notation on their personal HR goals list.

So for the few of us who in this situation by choice (or not), anyone developing this type of software deciding to still popup warning messages in front of the User; please give the User the option to "mute" the notifications.  They mean nothing to the User.

 

Did you enjoy that?

There was NO capitalization.

Nothing was emphasized.

EVERYTHING was bland, boring, and not triggering of YOUR PROJECTIONS onto my use of text-formatting.

 

Yes.  I've been doing this a little while kid.

If I choose to fully use the features of the PROVIDED TEXT EDITOR to shove emphasis in your face, then that is what I intended. If you don't like it, you could always switch to a web browser that displays everything as monospace typed fonts and completely strips off all formatting. YOU ARE FREE to do that.

 

Don't worry, I won't be triggering anyone like yourself any further in this forum, since there is apparently nothing anyone in this community say to resolve my 100+ useless notifications per month situation.  All email notification from this forum is ending up in junk email as it is.  MAYBE some software developer of VPN security software will see the message... 

TO REPEAT... HIP NOTIFICATIONS popping up 100+ times per month

n front of a User ARE POINTLESS.

View solution in original post

3 REPLIES 3

Cyber Elite
Cyber Elite

@vte888,

There's really not need for ALL CAPS shouting at people, just generally a good way to get your post avoided. You have a question that is easily answered, nobody on this forum volunteering their time to answer questions wants to respond to a post like this.

 

The notification that you're seeing is a HIP notification that your company setup, it isn't something that GlobalProtect does by default. Only they can tell you why you're hitting the condition that they setup to trigger this notification, but if I were to hazard a guess it's because you don't meet security requirements they set forth 😁.

This could be anything from you're running 6.0.8 and they want you running a newer release (like maybe they want you running 6.0.10), it could be because they don't want you running Sequoia yet, or it could be because GlobalProtect 6.0.8 wouldn't be able to determine the firewall status on Sequoia.

Have you contacted your company and just asked? That would be the first place to start

L1 Bithead

Thank-you for the info about the product, and letting me know Palo Alto calls these popups "HIP notifications".

This is similar to the crap notifications that Cisco puts in their VPN software.

 

Anyone developing this type of software, should note:

 

The User doesn't get to decide security software implemented at (probably all) corporations.

The User doesn't get to decide the configuration of the security software.

The User in most cases doesn't get to decide computer hardware on which the security software is installed.

Therefore warning messages sent 100+ times a month as popups to the User, are at best, aggravating.

The User has no control over their situation, yet the software developer is notifying the User.

Since all this security software is centrally controlled, the notifications need to be sent to the Administrator 100+ times a month, and not to the User.

Any notification on the User's end of things is next to useless.

 

Now for the case where people say... then User should notify the Administrator... okay... say they do...

The usual response is... the security software isn't going to change, the configuration isn't going to change, and the hardware isn't going to change... that's 99% of the cases usually... so we're back again to useless notifications popping in front of Users.

 

Then there's those of us who choose our hardware... I am not going backwards to use antiquated crap hardware just to meet some configuration's outdated specifications.  This industry turns on dime.  Nor am I going to waste my time bothering with endless discussions with people who are making whimsical security decisions to satisfy checkboxes to be able to say they've completed another checkbox notation on their personal HR goals list.

So for the few of us who in this situation by choice (or not), anyone developing this type of software deciding to still popup warning messages in front of the User; please give the User the option to "mute" the notifications.  They mean nothing to the User.

 

Did you enjoy that?

There was NO capitalization.

Nothing was emphasized.

EVERYTHING was bland, boring, and not triggering of YOUR PROJECTIONS onto my use of text-formatting.

 

Yes.  I've been doing this a little while kid.

If I choose to fully use the features of the PROVIDED TEXT EDITOR to shove emphasis in your face, then that is what I intended. If you don't like it, you could always switch to a web browser that displays everything as monospace typed fonts and completely strips off all formatting. YOU ARE FREE to do that.

 

Don't worry, I won't be triggering anyone like yourself any further in this forum, since there is apparently nothing anyone in this community say to resolve my 100+ useless notifications per month situation.  All email notification from this forum is ending up in junk email as it is.  MAYBE some software developer of VPN security software will see the message... 

TO REPEAT... HIP NOTIFICATIONS popping up 100+ times per month

n front of a User ARE POINTLESS.

Cyber Elite
Cyber Elite

Hi @vte888 ,

 

I understand that you are annoyed and even angry at the popups.

 

The vast majority of people on this community do not work for Palo Alto Networks.  So ... your solution is to annoy other users?

 

I use HIP notifications in my network and they popup once when the user connects from GlobalProtect to the network.

 

Thanks,

 

Tom

Help the community: Like helpful comments and mark solutions.
  • 1 accepted solution
  • 642 Views
  • 3 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!