GlobalProtect fails to connect on windows 11 ARM64 with error message: Could not connect to the GlobalProtect service.

• PanGPS service should be listening on localhost port 4767 and not in the established state (windows cmd)

Netstat -an | find "4767"
  TCP    127.0.0.1:63748        127.0.0.1:4767         SYN_SENT

• PANGPA logs show service connection failure

(P14096-T3120)Dump (3472): 12/27/22 09:14:17:262 Try to connect to GPS...
(P14096-T3120)Dump ( 265): 12/27/22 09:14:17:468 InitWinConnection ...
(P14096-T3120)Dump ( 269): 12/27/22 09:14:17:468 Cannot connect to service, error: 10022
(P14096-T3120)Dump (1314): 12/27/22 09:14:17:468 Unable to connect to Pan Service
(P14096-T14240)Dump ( 585): 12/27/22 09:14:17:773 CPanCommand::Send - not connected, and reintialized connection to service.
(P14096-T14240)Dump (1518): 12/27/22 09:14:17:773 Send command failed
(P14096-T3120)Dump ( 265): 12/27/22 09:14:17:773 InitWinConnection ...
(P14096-T3120)Dump ( 269): 12/27/22 09:14:17:774 Cannot connect to service, error: 10022
(P14096-T3120)Dump (3472): 12/27/22 09:14:17:774 Try to connect to GPS...
(P14096-T3120)Debug( 762): 12/27/22 09:14:18:074 Receive inactive message.
(P14096-T3120)Debug(2637): 12/27/22 09:14:18:075 Hide the main panel.

• Palo Alto Firewalls
• Supported PAN-OS
• GlobalProtect (GP) Portal and App
• Microsoft Surface Pro with ARM processor

• GlobalProtect App version for ARM64 machines is not hosted on the GP Portal.
• Portal only hosts Windows 32-bit and 64-bit GP App versions and Mac 32/64 bit GP App version.
• The wrong GlobalProtect App version may have been installed in the client machine

1. Download the .msi GlobalProtect ARM file from the customer support portal and install it on the client machine.
2. This will establish the PANGPS service and open port 4767, hence allowing a GlobalProtect connection.