The GlobalProtect configuration sharing feature enables you to share identical GlobalProtect-related configurations across multiple portals and gateways configured on Prisma Access and NGFW. This feature addresses the challenge of configuration duplication when managing both Prisma Access and NGFW environments. By implementing a new GlobalProtect configuration model that is consistent across both platforms, you can maintain better configuration health and simplify your operational tasks.

When you manage separate on-premises NGFW and Prisma Access deployments for mobile users, you can now reuse configurations between the two deployments. This is particularly valuable when migrating from NGFW to Prisma Access for managing mobile users, as you can reuse authentication profiles and agent settings, including agent app settings (portal) and agent tunnel settings (gateway). You have the flexibility to define different authentication methods for gateway and portal access, while maintaining visibility into where referenced entries are located.

The feature allows you to create reusable configurations for GlobalProtect (snippets) and refer to configurations stored in snippet. These snippets must be associated with specific folders within the global configuration scope in SCM. When creating your Prisma Access configuration, you can refer to these common configurations in the snippets.

By implementing this configuration sharing approach, you reduce the effort required to maintain consistent settings across your security infrastructure, minimize the risk of configuration errors, and create a more unified management experience across your Palo Alto Networks deployments.