>
    Strata Copilot
    Customizable App Settings
    Focus
    Download PDF
    Focus
    1. Home
    2. GlobalProtect
    3. GlobalProtect Administrator's Guide
    4. GlobalProtect Apps
    5. Deploy App Settings Transparently
    6. Customizable App Settings
    Download PDF
    GlobalProtect

    Customizable App Settings

    Table of Contents

    Customizable App Settings

    Deploy app settings such as App Display, User Behavior, App Behavior, and Script Deployment Options to endpoints through the Windows Registry, macOS plist, or Msiexec.
    Where Can I Use This?What Do I Need?
    • NGFW (managed by Panorama)
    • GlobalProtect Gateway license
    In addition to pre-deploying the portal address, you can also define the app settings. To Deploy App Settings to Windows Endpoints you define keys in the Windows Registry (path HKEY_LOCAL_MACHINE\SOFTWARE\Palo Alto Networks\GlobalProtect\Settings\ unless otherwise stated). To Deploy App Settings to macOS Endpoints you define entries in the Settings dictionary of the macOS plist (/Library/Preferences/com.paloaltonetworks.GlobalProtect.settings.plist). To Deploy App Settings to Linux Endpoints you define entries under <Settings> of the /opt/paloaltonetworks/globalprotect/pangps.xml pre-deployment configuration file. On Windows endpoints only, you can also use the Windows Installer to Deploy App Settings from Msiexec.
    The following topics describe each customizable app setting. Settings defined in the GlobalProtect portal agent configuration take precedence over settings defined in the Windows Registry or the macOS plist.
    Some settings do not have a corresponding portal configuration setting on the web interface and must be configured using the Windows Registry or Msiexec. These include, but are not limited to, settings such as the following: can-prompt-user-credential, wrap-cp-guid, and filter-non-gpcp. They are listed in the following options as “Not in portal.”

    © 2026 Palo Alto Networks, Inc. All rights reserved.