>
    Strata Copilot
    Configure Conditional Connect Method Based on Network Type
    Focus
    Download PDF
    Focus
    1. Home
    2. GlobalProtect
    3. GlobalProtect Apps
    4. Deploy App Settings Transparently
    5. Customizable App Settings
    6. Configure Conditional Connect Method Based on Network Type
    Download PDF
    GlobalProtect

    Configure Conditional Connect Method Based on Network Type

    Table of Contents

    Configure Conditional Connect Method Based on Network Type

    Configure the GlobalProtect app dynamically change the connect method based on the network type.
    Where Can I Use This?What Do I Need?
    • Prisma Access
    • GlobalProtect Subscription
    • Prisma Access Mobile Users license (for use with Prisma Access)
    • GlobalProtect app version 6.2 or later for Windows and macOS
    Configure Conditional Connect to enable the GlobalProtect app to change the connect method dynamically based on whether the internal host detection determines that the user is on the internal network or working from a remote location. You deploy the conditional-connect setting transparently from the macOS plist or the Windows Registry. Before enabling Conditional Connect, make sure that you have:
    • Enabled internal host detection
    • Configured the endpoints to use the on-demand connect method
    • Deploy Conditional Connect to Windows endpoints.
      1. In the Windows Registry, go to: \HKEY_LOCAL_MACHINE > SOFTWARE> Palo Alto Networks > GlobalProtect > Settings .
      2. Set the key as conditional-connect and the value to Yes.
    • Deploy Conditional Connect to macOS endpoints.
      1. In the plist file (/Library/Preferences/com.paloaltonetworks.GlobalProtect.settings.plist), go to /Palo Alto Networks/GlobalProtect/Settings.
      2. Set conditional-connect to Yes.

    © 2025 Palo Alto Networks, Inc. All rights reserved.