How to permanently allow GlobalProtect access to the login keychain on MAC?
65150
Created On 12/15/20 22:36 PM - Last Modified 07/11/23 17:28 PM
Objective
- After installing GlobalProtect on macOS, there are instances when one has to provide administrator credentials each time to access System keychain.
- A dialogue window, like the one shown below opens up:
- After providing that credential, one may see additional dialogue window, for which one has to enter the same credential:
- The article provides how to permanently address this issue and never have to enter the credential again by editing the Keychain password entries for GlobalProtectService and GlobalProtect
Environment
- GlobalProtect App
- macOS clients
Procedure
- Open Keychain Access
- Select the login Keychain
- Select the Passwords category
- In the list of passwords, you will have to edit each GlobalProtectService entry
- For each entry, select Access Control
- Select the option to Confirm before allowing access, add the applications shown below and then, select Save Changes. You will have to do this for each GlobalProtect password item.
/Applications/GlobalProtect.app
/Applications/GlobalProtect.app/Contents/Resources/PanGPS
/Applications/GlobalProtect.app/Contents/Resources/PanGpHip
/Applications/GlobalProtect.app/Contents/Resources/PanGpHipMp
- Kindly make changes to GlobalProtect entry as shown below