What settings are required for seamless authentication during Portal configuration refresh event?

What settings are required for seamless authentication during Portal configuration refresh event?

2582
Created On 07/21/22 17:41 PM - Last Modified 03/25/26 20:38 PM


Question


  • Portal configuration refresh interval is used for GlobalProtect app to fetch any configuration changes applied to GlobalProtect Portal.
  • As this involves Portal authentication, what settings are required for seamless authentication for Portal configuration refresh event?

Environment


  • GlobalProtect Portal
  • GlobalProtect app

Answer


Portal configuration refresh event requires following settings for seamless authentication:

  1. Authentication override cookie set to accept on Portal
  2. Windows or macOS SSO
  3. Save User Credentials set to Yes

If any of the above settings are not configured for LDAP, RADIUS, TACACS+, or Kerberos authentication, the GP Portal authentication will fail

If the GP Portal is configured with SAML Authentication, the Portal Configuration Refresh will not work until the "Accept cookie for authentication override" is configured with a Cookie Lifetime

Please check GlobalProtect Portal Config Not Updating After RefreshConfigInterval Expires
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000wl3cCAA&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail