You can configure the GlobalProtect portal
to provide secure remote access to common enterprise web
applications. For best results, make sure you thoroughly test your
Clientless VPN applications in a controlled environment before deploying
them or making them available to a large number of users.
The following Web application technologies are not supported:
Non-Web applications such as SSH, FTP, SMTP, Remote desktop protocol
(RDP), and so forth
Multiple transactions in HTTP such as NT LAN Manager (NTLM) authentication
CSS (for example, Flash, Java Applet, Microsoft Silverlight, PDF,
XML, and so forth)
Other technologies (for example, Microsoft Silverlight or
Any content encodings (for example,
Accept-Encoding: defalte, br
Web application technologies
RDP, VNC, or SSH
Virtual Desktop Infrastructure
(VDI) and Virtual Machine (VM) environments, such as Citrix XenApp and XenDesktop or
VMWare Horizon and Vcenter, support access natively through HTML5.
You can RDP, VNC, or SSH to these
machines through Clientless VPN without requiring additional third-party
In environments that do not include native support for HTML5
or other web application technologies supported by Clientless VPN,
you can use third-party vendors, such as Thinfinity, to RDP through
Adobe Flash—With Clientless VPN, browsers can serve content
that uses Adobe Flash, Microsoft Word documents, or Adobe PDFs.
However, Clientless VPN cannot rewrite HTML URLs or links within
Adobe Flash, Microsoft Word documents, or Adobe PDFs, which can
prevent the content from rendering correctly.