Use the GlobalProtect App for Mac

This chapter applies to you only if your setup requires you to enter your GlobalProtect login credentials after you have logged into your endpoint (single sign-on is disabled).
We typically recommend that organizations allow its GlobalProtect users to log in transparently following app installation. After you log in to an endpoint with transparent GlobalProtect login, the GlobalProtect app automatically initiates and connects to the corporate network without further user intervention.
If your setup requires you to enter your GlobalProtect credentials, follow the applicable steps below.
  1. Connect to the GlobalProtect portal or gateway.
    You can determine if you are connected by checking the GlobalProtect system tray icon. If you are not connected, the icon is gray ( gp-not-connected.png ), and Disconnected appears when you hover over the icon.
    1. Launch the GlobalProtect app by clicking the system tray icon. The status panel opens.
    2. (Optional) If you are logging in to the GlobalProtect app for the first time, enter the FQDN or IP address of the GlobalProtect portal, and then click Connect.
    3. (Optional) If multiple portals are saved on your app, select a portal from the Portal drop-down. By default, the most recently connected portal is pre-selected from the Portal drop-down.
    4. (Optional) By default, you are automatically connected to the Best Available gateway, based on the configuration that the administrator defines and the response times of the available gateways. To connect to a different gateway, select the gateway from the Gateway drop-down (for external gateways only).
      This option is only available if your administrator enables manual gateway selection.
    5. (Optional) Depending on the connection mode, click Connect to initiate the connection.
    6. (Optional) If prompted, enter your Username and Password, and then Sign In.
      When the app connects in external mode, the GlobalProtect system tray icon displays a shield ( gp-connected-external.png ), and Connected appears when you hover over the icon. When the app connects in internal mode, the GlobalProtect system tray icon displays a house ( gp-connected-internal.png ), and Internal Network appears when you hover over the icon.
  2. Open the GlobalProtect app.
    Click the GlobalProtect system tray icon to launch the app interface.
  3. View information about your network connection.
    After you launch the app, click the settings icon ( settings-icon.png ) on the status panel to open the settings menu. Select Settings to open the GlobalProtect Settings panel, and then select one of the following tabs to view information about your network connection:
    • General—Displays the username and portal(s) associated with the GlobalProtect account. You can also add, delete, or modify portals from this tab.
      Settings-General-Mac.png
    • Connection—Lists the gateways configured for the GlobalProtect app and provides the following information about each gateway:
      • Gateway name
      • Tunnel status
      • Authentication status
      • Connection type
      • Gateway IP address or FQDN (only available in external mode)
      For internal mode, the Connection tab displays the entire list of available gateways. For external mode, the Connection tab displays only the gateway to which you are connected and additional details about the gateway (such as the gateway IP address and uptime).
      Connection Tab When In Internal Mode
      Settings-Connection-Internal-Mac.png
      Connection Tab When In External Mode
      Settings-Connection-External-Mac.png
    • Host Profile—Displays the endpoint data that GlobalProtect uses to monitor and enforce security policies using the Host Information Profile (HIP). Click Resubmit Host Profile to manually resubmit HIP data to the gateway.
      If your administrator configures the Severity value for missing patches as a HIP match condition, use the following mappings between the GlobalProtect severity values and the OPSWAT severity ratings to understand what each value means:
      Severity Value Displayed on the GlobalProtect App
      OPSWAT Severity Rating
      -2
      Not Available
      -1
      Unknown
      0
      Low
      1
      Moderate
      2
      Important
      3
      Critical
      Settings-Host-Profile-Mac.png
    • Troubleshooting—Enables you to Collect Logs and set the Logging Level.
      Settings-Troubleshooting-Mac.png
  4. (Optional) Log in using a new password.
    If your GlobalProtect administrator configures the GlobalProtect portal agent to Save User Credentials, your credentials are automatically saved to the GlobalProtect app. If your password for accessing the corporate network changes, you must log in to GlobalProtect using your new password.
    1. Launch the GlobalProtect app by clicking the system tray icon. The status panel opens.
    2. Click the settings icon ( settings-icon.png ) to open the settings menu.
    3. Select Settings to open the GlobalProtect Settings panel.
    4. On the General tab of the GlobalProtect Settings panel, Sign Out to clear your saved user credentials from the GlobalProtect app.
    5. After you clear your user credentials, you can reconnect to GlobalProtect with your new username and password.
  5. (Optional) Disconnect from GlobalProtect.
    If your administrator configures GlobalProtect with the On-Demand connect method, you can disconnect from GlobalProtect by clicking Disconnect on the status panel.

Related Documentation