About UrosSustar

leitzf · ‎01-11-2023

After a ton of troubleshooting this, I figured out that removing the device serial number from the network > portal > satellites > satellite device list seems to clear the stored cookie on the portal. This then prompts the satellite to re-authenticate using username/password, which you can do via an automated method. I'm running 10.1.8-h2, so your mileage might vary depending on your version

Adrian_Jensen · ‎09-12-2022

I do not believe there are any preemption options for the gateway. Failover from the primary to secondary works because the client will automatically try to reconnect when is loses connection to the gateway, so it will test the primary, find it is unreachable, and then fail to the secondary. But when the primary comes back up it is already connected (to the secondary) gateway), so there is no reason to retest. Clients should automatically return to the primary gateway when the maximum VPN lifetime expires, though this may take considerable time (I believe the default is 30 days). Some options might be: decrease the VPN lifetime; tell clients to manually switch back to the primary; or block the secondary gateway to force clients back to the primary.

UrosSustar · ‎06-30-2021

We're having the same challenge. This feature is still not supported? Is there any workaround?

Member Since	‎03-26-2021 12:33 AM
Date Last Visited	‎01-12-2023 03:36 AM
Posts	4

Online Status	Offline
Date Last Visited	‎01-12-2023 03:36 AM

About UrosSustar

GlobalProtect GW redundancy and preemption

Re: LSVPN Satellites unable to sign-in to the portal after upgraded to PAN OS 10.1.2

Re: LSVPN Satellites unable to sign-in to the portal after upgraded to PAN OS 10.1.2

Re: GlobalProtect Linux CLI - connect pre-logon

Re: LSVPN Satellites unable to sign-in to the portal after upgraded to PAN OS 10.1.2

Re: GlobalProtect GW redundancy and preemption

Re: GlobalProtect Linux CLI - connect pre-logon