GlobalProtect App for iOS User Experience Enhancements

GlobalProtect app 5.0 for iOS introduces an enhanced app interface and user experience, MDM configuration changes, and authentication changes.
OS Support: iOS 10 and later releases.
GlobalProtect app 5.0 for iOS endpoints has been enhanced to provide a more intuitive user experience, a more modern and streamlined app interface, and an improved connection process. In addition, the new app introduces authentication enhancements and changes to the mobile device management (MDM) configuration.
The following enhancements and changes are introduced in GlobalProtect app 5.0 for iOS endpoints:
Feature
Description
iOS Enhancements
Native iOS App Experience
GlobalProtect app 5.0 features a native iOS app experience that enables GlobalProtect to access the endpoint’s built-in capabilities (such as system notifications) and run more seamlessly on the endpoint.
Mobile Device Management Changes
Configuration and Deployment of VPN Profiles
If you manage iOS endpoints using an MDM system, you must push a custom VPN profile from the MDM server to all enrolled mobile endpoints that will be using the new app.
MDM-based Client Certificate Deployment
If you manage iOS endpoints using an MDM system and want to use client certificates for GlobalProtect client authentication, you must now deploy the client certificates as part of the VPN profile that is pushed from the MDM server.
MDM Integration for HIP-based Policy Enforcement
To enable the GlobalProtect app to collect and use UDID information for HIP-based policy enforcement using the GlobalProtect MDM integration, you must now specify the UDID attribute in the VPN profile that is pushed from the MDM server.
Authentication Changes
Enhanced User Experience for Two-Factor Authentication Using One-Time Passwords (OTPs)
When users authenticate to GlobalProtect portals or gateways using two-factor authentication with one-time passwords (OTPs), the OTP authentication prompt on the GlobalProtect app for iOS no longer blocks access to other applications on the endpoint.
Client Certificate Deployment
If you manage iOS endpoints using an MDM system and want to use client certificates for GlobalProtect client authentication, you must now deploy client certificates as part of the VPN profile that is pushed from the MDM server. See Mobile Device Management Changes for more details.
If you do not use an MDM system to manage your iOS endpoints, you can deploy client certificates from the GlobalProtect portal or by using the Apple Configurator.
App Interface Enhancements
Home Screen
GlobalProtect app 5.0 features a simplified home screen that displays the state of the GlobalProtect connection and enables end users to connect to or disconnect from GlobalProtect.
Settings Menu
GlobalProtect app 5.0 introduces a consolidated settings menu from which users can select, view, and modify GlobalProtect app settings.
User Experience Enhancements
Seamless Login
GlobalProtect app 5.0 features a more streamlined and seamless connection experience.
Expired Password Change
Remote users can now change their expired RADIUS or Active Directory (AD) passwords directly through the new app.
Notification Handling
GlobalProtect app 5.0 introduces a new way to view and handle notifications.
Refer to the following sections to get started with GlobalProtect app 5.0 and learn more about the enhancements and changes introduced in this release:

Related Documentation