About JonGross

JonGross · ‎05-09-2023

You can try this. It disables OpenSSL version 3. This is using the GUI version on Ubuntu 22. Modify the file /usr/lib/ssl/openssl.cnf. At the end of the file you’ll see: [system_default_sect] CipherString = DEFAULT:@SECLEVEL=2 Change that to: [system_default_sect] CipherString = DEFAULT:@SECLEVEL=1 Options = UnsafeLegacyRenegotiation Reboot and connect to the GP VPN portal.

JonGross · ‎04-14-2023

Hi Raido, Why is there even an option for the gateway client to generate cookies? Does that ever happen and how does it affect which profile is chosen? How can I see this behavior? Could you show an example? Maybe from the client logs?

JonGross · ‎03-27-2023

Yes, we have it working. When connecting to Global Protect and authenticating to Azure SAML, the embedded browser on Linux machines will fail during TLS handshaking . Force the client to use Firefox or what ever is the default browser. Stop the Global Protect service. sudo systemctl stop gpd.service Create a new entry in the /opt/paloaltonetworks/globalprotect/pangps.xml configuration file. Set the default-browser value to yes under <Settings>. Example: <?xml version="1.0" encoding="UTF-8"?> <GlobalProtect> <Settings> <default-browser>yes</default-browser> <Settings> Reboot.

Member Since	‎02-10-2021 08:34 AM
Date Last Visited	‎05-23-2023 03:45 PM
Posts	3

Online Status	Offline
Date Last Visited	‎05-23-2023 03:45 PM

About JonGross

Re: Anyone got Global Protect 6.1.0 for Linux to work on Ubuntu 22.04?

Re: Generate cookie vs Accept cookie

Re: Anyone got Global Protect 6.1.0 for Linux to work on Ubuntu 22.04?

Nominated Discussion: Bring down IPsec tunnel manually

Re: Anyone got Global Protect 6.1.0 for Linux to work on Ubuntu 22.04?

Re: Generate cookie vs Accept cookie

Re: Anyone got Global Protect 6.1.0 for Linux to work on Ubuntu 22.04?