Starting February 24, 2017, all VPN connections must go through the Palo Alto GlobalProtect VPN portal.
To install the Linux GlobalProtect client:
- Download the client install file attached to the bottom of this support article.
- Unzip the file. Example:
tar -xvf ~/pkgs/PanGPLinux-5.0.8-c6.tgz
- Once unzipped you should see installation packages for Ubuntu (DEB), CentOS (RPM), and Red Hat as well as the scripts to install and uninstall the packages.
- Install the app package using either:
sudo dpkg -i <gp-app-pkg>or
sudo apt-get install <gp-app-pkg>Where <gp-app-pkg> is the name of your distribution package for your Linux version.
(Optional) Change CLI modes - You can run commands in either command-line or prompt mode.
Command-line mode requires you to specify the full GlobalProtect
command. Prompt mode requires you to specify only the command (without
the app name) and displays more detailed output than command-line
To switch to prompt mode, enter globalprotect without any arguments
To exit prompt mode, enter quit
- (Optional) You can view the help information for GlobalProtect by entering help while in Prompt Mode or globalprotect help while in Command-Line Mode.
Note: The GlobalProtect app for Linux installs to the |
/opt/paloaltonetworks/globalprotectdirectory. After GlobalProtect first runs, the app also creates a GlobalProtect user folder
$HOME/.globalprotectto save user registry configuration and other CLI related settings.
globalprotect connect --portal vpn.atu.edu
Note: You can also specify a username in the command using the |
--usernameoption. The GlobalProtect app prompts you to authenticate and, if you specified the username option, confirm your username.
Connect to an ATU Gateway to establish the VPN connection:
- (Optional) Display the gateways you have permission to connect to. Most users at Arkansas Tech University will only have access to the default VPN gateway but, if you've been granted access to other gateways in order to reach more secured network resources, you may see them here.
globalprotect show --manual-gateway
- Connect to a gateway
globalprotect connect --gateway <gp-gateway>
Where <gp-gateway> is the IP address or name of the gateway.
- You should now be connected to the VPN.. you can verify connection status using:
globalprotect show --details
globalprotect show --status
Clear the credentials for the current user:
The following command will clear the credentials for the current user. After confirming, GlobalProtect will clear the credentials, disconnects the VPN connection, and then requires you to enter your credentials the next time you attempt to connect.
View any GlobalProtect notifications:
The following command will dispaly any notifications from the GlobalProtect app.
globalprotect show --notifcation