01-30-2025 12:29 PM
We have GlobalProtect with "Enforce GlobalProtect" enabled and a set of IP and FQDN exclusions. Additionally, the captive portal exception timeout is configured to 900 seconds. However, we’ve encountered an issue when users are connected to GlobalProtect, put their laptop to sleep, and then travel to a different location (e.g., a hotel). Upon waking up the laptop, users are unable to connect to any network, including those listed in the exclusions. The only workaround is for the user to restart the laptop in order to reconnect to the new network and GlobalProtect.
Upon further investigation, I found that the exclusions do not persist in the registry after the laptop is rebooted. They are only present in the registry while GlobalProtect is connected, which seems counterintuitive—especially since some of these excluded sites are necessary for GlobalProtect to function properly. This behavior persists across multiple versions of GlobalProtect (6.1.4, 6.1.5, and 6.2.5).
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
