GlobalProtect VPN (Replacing Cisco AnyConnect)

VPN Cisco AnyConnect connect Global protect GlobalProtect campusvpn palo alto any PaloAlto

In an effort to strengthen security and streamline access, the Cisco AnyConnect VPN will be replaced with the GlobalProtect VPN on June 1, 2023. To allow a smooth transition, both VPNs are available now through May 31, 2023. During this time period, you are able to use either VPNs, however, you are encouraged to transition to the GlobalProtect VPN as soon as it is available. Starting June 1, 2023, the Cisco AnyConnect VPN will no longer be available.

PLEASE NOTE:

The following installation instructions are only applicable to personally owned computers. Login instructions apply to all users, however.
UND-owned computers will have the GlobalProtect VPN client installed automatically when using campus WiFi or wired connections.
Off campus users of UND-owned machines should continue using the Cisco AnyConnect VPN until the GlobalProtect VPN client appears in their Applications menu or launcher, or the installer becomes available in the Software Center application. If the client has not appeared after 48 hours, please reach out to UIT for support.
Starting June 1, 2023, the Cisco AnyConnect VPN will no longer be available.
Users may experience a slightly longer connection time when connecting to the GlobalProtect VPN compared to the Cisco AnyConnect VPN.
There is currently no supported method to use the GlobalProtect VPN from ChromeBooks or mobile devices.
If a portal, application, website, or service doesn't work using GlobalProtect, revert back to using Cisco AnyConnect, and submit a ticket to UIT explaining the issue.

Choose from the options below for step-by-step instructions on logging into the GlobalProtect VPN and installing the client on Mac, Windows, or Linux devices.

Log into the GlobalProtect VPN (Virtual Private Network)

Once you've successfully installed the GlobalConnect VPN client software, click the GlobalProtect icon in the taskbar (Windows), or menubar (Mac). When not connected, the icon will be a greyed-out globe. If you don't see the icon, check the Start menu or Applications folder for the GlobalProtect app and launch it. On Windows, it will be inside a folder called "Palo Alto Networks".
Type the following URL in to the "Portal" field, then click Connect.
Click here for steps to add additional VPN portals, such as ASAVPN1 and NDUS.

vpn.und.edu

Add Additional VPN Portals to Access ASAVPN1, NDUS, and Others

Click the GlobalProtect icon in your taskbar or menubar. Select the menu at the top right, then click Settings
Click the plus icon to the right of the "Manage Portals" section of Settings screen.
Enter the portal address for the VPN you want to add. Click Add
Close the Settings window.
There will now be a dropdown menu in the GlobalProtect taskbar or menu bar window where you can select your preferred Portal

An NDUS Portal Log In page will appear IN A SEPARATE WINDOW. Enter your credentials as usual, and verify with DUO.
Once connected, you'll see the confirmation notification.
To disconnect, or reconnect in the future, simply click the GlobalProtect icon in your taskbar (Windows), or menubar (Mac), and click Disconnect or Connect.

Install GlobalProtect VPN Client for Windows

Launch a web browser and go to the following URL: vpn.und.edu
An NDUS Portal Log In page will appear IN A SEPARATE WINDOW. Enter your credentials as usual, and verify with DUO.
From the GlobalProtect Portal page, select the "Download Windows 64 bit GlobalProtect agent" link.
Once the download is finished, open it from your browser, or your downloads folder in File Explorer.
At the "Welcome to the GlobalProtect Setup Wizard" window, click Next
On the "Select Installation Folder" window, click Next
Click Next at the "Confirm Installation" window.
If you see a pulsating shield icon in your taskbar, click it.
Click Yes if a "User Account Control" window appears. You may need to enter your computer username and password.
The installation will begin.
When the "Installation Complete" screen appears, click Close
Restart your computer. Do not use Shutdown, Sleep, or Hibernate.
After restart, you should have a new icon in your taskbar notification area for the GlobalProtect Client. Note, the icon may be hidden in the overflow menu .
See the Log In section for next steps.

Install GlobalProtect VPN Client for Mac

Launch a web browser and go to the following URL: vpn.und.edu
An NDUS Portal Log In page will appear IN A SEPARATE WINDOW. Enter your credentials as usual, and verify with DUO.
From the GlobalProtect Portal page, click "Download Mac 32/64 bit GlobalProtect agent".
Once the download is finished, open it from your browser or a Finder file browser window.
At the "Install GlobalProtect Introduction" window, click Continue
With your computer's boot drive selected, click Continue
At the "Installation Type" step, click to add a check-mark to the "GlobalProtect", and "GlobalProtect System extensions" options, then click Continue
Click Install
When prompted, use Touch ID or select Use Password... to enter your Mac's password manually.
The installation will begin.
When the "installation was successful" screen appears, click Close
If you see a message stating ""Installer.app" would like to access files in your ...... folder", click OK to proceed.
When you see the "System Extension Blocked" message, click Open System Settings
In the "Privacy & Security" window, under the text "System software from application "GlobalProtect.app" was blocked from loading.", click Allow
When prompted, use Touch ID or select Use Password... to enter your Mac's password manually. Then close the "Privacy & Security" window.
You might see a notification in the top-right of your screen. Clicking it will open a window where you can change notification options for GlobalProtect. This step is optional.
You should now see the GlobalProtect icon in your menubar. This confirms the install was successful.
See the Log In section for next steps.

Install GlobalProtect VPN Client for Linux

The official GlobalProtect VPN Client is only compatible with a few Linux distributions. UIT does not support Linux clients in any way. See the links below for general information on the client, and where to download it.

Anyone using a Linux machine with OpenSSL version 3 will be unable to connect to GlobalProtect unless they manually enable Unsafe Legacy Renegotiation in their OpenSSL configuration. Using Unsafe Legacy Renegotiation may be a security risk. UND takes no responsibility for any security threats the user may face by using this setting.

Edit the file "/usr/lib/ssl/openssl.cnf"
Locate the section "[system_default_sect]" and add the line "Options = UnsafeLegacyRenegotiation" and save your changes
Restart the GlobalProtect VPN service (sudo systemctl restart gpd)
Connect to GlobalProtect

0 reviews

Report Issue

Details

Article ID: 145487

Created

Wed 4/26/23 1:32 PM

Modified

Mon 5/22/23 3:53 PM

Updating...