GlobalProtect VPN (Replaces Cisco AnyConnect)

VPN Cisco AnyConnect connect Global protect GlobalProtect campusvpn palo alto any PaloAlto

In an effort to strengthen security and streamline access, the Cisco AnyConnect VPN has been replaced with the GlobalProtect VPN. Through GlobalProtect, users with UND credentials are given remote access to specific systems hosted on UND networks. Systems accessible via VPN may include shared drive network file storage, document management systems, and remote desktops.

PLEASE NOTE:

UND-owned devices have the GlobalProtect client installed automatically when connected to campus WiFi or wired networks..
Login instructions apply to all users.
There is currently no supported method to use the GlobalProtect VPN from ChromeBooks or mobile devices.
If a portal, application, website, or service doesn't work using GlobalProtect, please submit a ticket to UIT explaining the issue.

Choose from the options below for step-by-step instructions on logging into the GlobalProtect VPN and installing the client on Mac, Windows, or Linux devices.

Log in to the GlobalProtect VPN (Virtual Private Network)

Once you've successfully installed the GlobalConnect VPN client software, click the GlobalProtect icon in the taskbar (Windows), or menubar (Mac). When not connected, the icon will be a greyed-out globe. If you don't see the icon, check the Start menu or Applications folder for the GlobalProtect app and launch it. On Windows, it will be inside a folder called "Palo Alto Networks"
Type the following URL in to the "Portal" field, then click Connect. vpn.und.edu

Click here for steps to add additional VPN portals, such as ASAVPN1 and NDUS.

Add Additional VPN Portals to Access ASAVPN1, NDUS, and Others

Click the GlobalProtect icon in your taskbar or menubar. Select the menu at the top right, then click Settings
Click the plus icon to the right of the "Manage Portals" section of Settings screen.
Enter the portal address for the VPN you want to add. Click Add
Close the Settings window.
There will now be a dropdown menu in the GlobalProtect taskbar or menu bar window where you can select your preferred Portal

An NDUS Portal Log In page will appear IN A SEPARATE WINDOW. Enter your credentials as usual, and verify with DUO.
Once connected, you'll see the confirmation notification.
To disconnect, or reconnect in the future, simply click the GlobalProtect icon in your taskbar (Windows), or menubar (Mac), and click Disconnect or Connect.

Install the GlobalProtect VPN Client for Personal Windows Devices

Please Note! These instructions only apply to personally owned computers. UND owned devices have GlobalProtect installed automatically. If the GlobalProtect icon doesn't appear in the taskbar, or in a folder labelled "Palo Alto Networks" in the Windows application menu, please contact UIT for assistance.

Launch a web browser and go to the following URL: vpn.und.edu
An NDUS Portal Log In page will appear IN A SEPARATE WINDOW. Enter your credentials as usual, and verify with DUO.
From the GlobalProtect Portal page, select the "Download Windows 64 bit GlobalProtect agent" link.
Once the download is finished, open it from your browser, or your downloads folder in File Explorer.
At the "Welcome to the GlobalProtect Setup Wizard" window, click Next
On the "Select Installation Folder" window, click Next
Click Next at the "Confirm Installation" window.
If you see a pulsating shield icon in your taskbar, click it.
Click Yes if a "User Account Control" window appears. You may need to enter your computer username and password.
The installation will begin.
When the "Installation Complete" screen appears, click Close
Restart your computer. Do not use Shutdown, Sleep, or Hibernate.
After restart, you should have a new icon in your taskbar notification area for the GlobalProtect Client. Note, the icon may be hidden in the overflow menu . If the application icon is not in your taskbar, select the Windows menu button, and scroll down to find a folder labelled "Palo Alto Networks". From there, you should be able to launch GlobalProtect.
See the Log In section for next steps.

Install GlobalProtect VPN Client for Personal Mac Devices

Please Note! These instructions only apply to personally owned computers. UND owned devices have GlobalProtect installed automatically. If the GlobalProtect icon doesn't appear in the menu bar, or in the Applications folder or Launcher, please contact UIT for assistance.

Launch a web browser and go to the following URL: vpn.und.edu
An NDUS Portal Log In page will appear IN A SEPARATE WINDOW. Enter your credentials as usual, and verify with DUO.
From the GlobalProtect Portal page, click "Download Mac 32/64 bit GlobalProtect agent".
Once the download is finished, open it from your browser or a Finder file browser window.
At the "Install GlobalProtect Introduction" window, click Continue
With your computer's boot drive selected, click Continue
At the "Installation Type" step, click to add a check-mark to the "GlobalProtect", and "GlobalProtect System extensions" options, then click Continue
Click Install
When prompted, use Touch ID or select Use Password... to enter your Mac's password manually.
The installation will begin.
When the "installation was successful" screen appears, click Close
If you see a message stating ""Installer.app" would like to access files in your ...... folder", click OK to proceed.
When you see the "System Extension Blocked" message, click Open System Settings
In the "Privacy & Security" window, under the text "System software from application "GlobalProtect.app" was blocked from loading.", click Allow
When prompted, use Touch ID or select Use Password... to enter your Mac's password manually. Then close the "Privacy & Security" window.
You might see a notification in the top-right of your screen. Clicking it will open a window where you can change notification options for GlobalProtect. This step is optional.
You should now see the GlobalProtect icon in your menubar. This confirms the install was successful.
See the Log In section for next steps.

Install GlobalProtect VPN Client for Linux

The official GlobalProtect VPN Client is only compatible with a few Linux distributions. UIT does not support Linux clients in any way. See the links below for general information on the client, and where to download it.

Anyone using a Linux machine with OpenSSL version 3 will be unable to connect to GlobalProtect unless they manually enable Unsafe Legacy Renegotiation in their OpenSSL configuration. Using Unsafe Legacy Renegotiation may be a security risk. UND takes no responsibility for any security threats the user may face by using this setting.

Edit the file "/usr/lib/ssl/openssl.cnf"
Locate the section "[system_default_sect]" and add the line "Options = UnsafeLegacyRenegotiation" and save your changes
Restart the GlobalProtect VPN service (sudo systemctl restart gpd)
Connect to GlobalProtect

0 reviews

Details

Article ID: 145487

Created

Wed 4/26/23 1:32 PM

Modified

Thu 11/9/23 8:51 AM

Updating...