Addressed Issues for Android, Chrome, Windows, Windows 10 UWP, Mac, and Linux

See the list of addressed issues in GlobalProtect app 5.0 for Android, Chrome, Windows, Windows 10 UWP, Mac, and Linux.
The following topic describes the issues addressed in GlobalProtect app 5.0 for Android, Chrome, Windows, Windows 10 UWP, Mac, and Linux.

GlobalProtect App 5.0.2 Addressed Issues

The following table lists the issues that are addressed in GlobalProtect app 5.0.2 for Windows and Mac:
Issue ID
Description
GPC-8428
Fixed an issue on Windows endpoints where, if you configured GlobalProtect with the Pre-logon (Always On)Connect Method (NetworkGlobalProtectPortals<portal-config>Agent<agent-config>App) and set the pre-logon-tunnel-rename-timeout to 0, the GlobalProtect app was unable to detect captive portals.
GPC-8356
Fixed an issue where, if you configured the GlobalProtect gateway to authenticate users through two-factor authentication using one-time passwords (OTPs) with SAML, the GlobalProtect app remained in the Connecting state after users authenticated to the gateway successfully.
GPC-8289
Fixed an issue on Mac endpoints where the launchctl process caused high CPU usage on the endpoint because of the GlobalProtect app.
GPC-8270
Fixed an issue on Windows 10 endpoints where, after the endpoint woke up from sleep mode, the GlobalProtect app incorrectly displayed the Connected status even though it was not connected to the GlobalProtect gateway.
GPC-8269
Fixed an issue on Windows endpoints where the GlobalProtect app halted suddenly when users clicked hyperlinks on custom help pages.
GPC-8266
Fixed an issue on endpoints running macOS 10.13 and later releases where GlobalProtect kernel extensions were unable to load on the endpoint after it woke up from sleep mode. When this issue occurred, the GlobalProtect app displayed the following error message intermittently: 
Some components of the GlobalProtect App could not be launched due to Operating System Settings. This may result in some network traffic being blocked. Please contact your IT administrator.
GPC-8226
Fixed an issue on Windows 10 endpoints where, if you configured GlobalProtect with the Pre-logon (Always On)Connect Method (NetworkGlobalProtectPortals<portal-config>Agent<agent-config>App) and set the pre-logon-tunnel-rename-timeout to a positive value (for example, 30 seconds), the GlobalProtect app handled the two-factor authentication challenge incorrectly during gateway authentication, thereby causing an authentication failure.
GPC-8214
Fixed an issue on Windows 10 endpoints in the German language where the GlobalProtect sign in dialog experienced display issues such as a truncated Sign In (Anmelden) label, untranslated content, and a missing colon (:) after the Username label.
GPC-8207
Fixed an issue on Windows endpoints where, if you configured the GlobalProtect gateway to authenticate users through two-factor authentication using one-time password (OTPs) with RADIUS, the GlobalProtect app forwarded single sign-on (SSO) passwords instead of OTPs to the gateway for authentication.
GPC-8206
Fixed an issue on Windows endpoints where the GlobalProtect service (PanGPS) restarted after network discovery.
GPC-8197
Fixed an issue on Windows 10 endpoints where, if you configured GlobalProtect with the Pre-logon (Always On)Connect Method (NetworkGlobalProtectPortals<portal-config>Agent<agent-config>App) and set the pre-logon-tunnel-rename-timeout to 0, the GlobalProtect app incorrectly displayed the Not Connected state even though it detected the internal network successfully.
GPC-8195
Fixed an issue on Windows endpoints where the GlobalProtect pre-logon connection status remained as Internal after users restarted the endpoint and lost network connectivity.
GPC-8194
Fixed an issue on the GlobalProtect app for Windows endpoints where, if you configured the GlobalProtect portal to authenticate users through two-factor authentication with SAML and client certificate authentication, the app entered an authentication loop if it sent the incorrect client certificate to the portal.
GPC-8183
Fixed an issue where the GlobalProtect app for Windows endpoints remained in the Connecting state for an extended period of time after the endpoint woke up from sleep mode.
GPC-8126
Fixed an issue on Windows endpoints where, if users moved the taskbar to a secondary monitor, GlobalProtect notification messages continued to appear on the original monitor.
GPC-8124
Fixed an issue on Windows endpoints where, if you enabled the No direct access to local network option and also configured a split tunnel to exclude specific access routes (NetworkGlobalProtectGateways<gateway-config>AgentClient SettingsSplit TunnelAccess Route), traffic for those access routes continued to go through the VPN tunnel.
GPC-7462
Fixed an issue in the HIP profile where GlobalProtect was unable to identify and display the correct Malware Definition Date when Symantec Endpoint Protection ran on Windows 7 endpoints.
GPC-7188
Fixed an issue on Mac endpoints where the firewall was unable to map users to IP addresses after the endpoint woke up from sleep mode exceeding three hours. This issue occurred because the IP address-to-user mapping times out on the firewall after three hours. With this fix, the GlobalProtect app sends a HIP report check request to the GlobalProtect gateway to refresh the IP address-to-user mapping after the endpoint wakes up from sleep mode exceeding three hours.
GPC-6214
Fixed an issue in the HIP profile where GlobalProtect was unable to detect Dr. Web Security Space.

GlobalProtect App 5.0.1 Addressed Issues

The following table lists the issues that are addressed in GlobalProtect app 5.0.1 for Android, Chrome, Windows, Windows 10 UWP, Mac, and Linux:
Issue ID
Description
GPC-8177
Fixed an issue where, if you configured both the GlobalProtect portal and gateway to authenticate users through SAML authentication, the GlobalProtect app for Android endpoints was unable to connect to the gateway due to a Matching client config not found error. This issue was caused by a mismatch between the username sent by the portal (domain\username) and the gateway (username).
GPC-8137
Fixed an issue where, if the GlobalProtect app was unable to connect to any external gateways after the endpoint woke up from sleep mode, it automatically connected to gateways with only the Low or LowestPriority when rediscovering the network.
GPC-8109
Fixed an issue with the Pre-logon (Always On)Connect Method where, if you configured GlobalProtect to authenticate users through multi-factor authentication with SAML and you set the pre-logon-tunnel-rename-timeout to 0, Windows users were not automatically prompted to log in to GlobalProtect after logging in to the endpoint.
GPC-8079
Fixed an issue with the Pre-logon (Always On)Connect Method where user tunnel creation failed on Windows endpoints if you configured the following settings:
  • The GlobalProtect portal or gateway authenticates users through SAML authentication.
  • The portal and gateway generate and accept cookies for authentication override (NetworkGlobalProtectPortals<portal-config>Agent<agent-config>Authentication).
  • The Save User Credentials option is set to Save Username Only (NetworkGlobalProtectPortals<portal-config>Agent<agent-config>Authentication).
  • The Use Single Sign-On option is set to No (NetworkGlobalProtectPortals<portal-config>Agent<agent-config>App).
GPC-8055
Fixed an issue on Mac endpoints where, if you configured the GlobalProtect portal to authenticate users through two-factor authentication using client certificates, and you also specified an extended key usage OID with certificate lookup in both the machine store and user store, users were able to authenticate to the portal successfully using a certificate with no OID or an incorrect OID.
GPC-8036
Fixed an issue where the GlobalProtect app for Windows 10 UWP did not send HIP reports to the firewall from domain-joined Azure AD endpoints, thereby causing these users to timeout and disconnect from GlobalProtect.
GPC-8020
Fixed an issue on Mac endpoints where the following notification message appeared when users launched GlobalProtect app 5.0 for the first time. This notification message prompted users to enter their Mac password so that the GlobalProtect service (PanGPS) could access and use client certificates from the login keychain.
PanGPS wants to use your confidential information stored in “Configuration Profiles” in your keychain.

To allow this, enter the "login" keychain password.
GPC-8002
Fixed an issue on Android endpoints where, if you set the Save User Credentials option to Yes in the portal agent configuration (NetworkGlobalProtectPortals<portal-config>Agent<agent-config>Authentication), the GlobalProtect app was unable to save the username and password after users either stopped the app from running in the background or restarted the endpoint.
GPC-7745
Fixed an issue in the HIP profile where GlobalProtect was unable to identify and display the Last Full Scan Time when Trend Micro Titanium ran on Windows and Mac endpoints.
GPC-7662
Fixed an issue on Windows and Mac endpoints where the GlobalProtect app was intermittently unable to save usernames when you set the Save User Credentials option to Save Username Only in the portal agent configuration (NetworkGlobalProtectPortals<portal-config>Agent<agent-config>Authentication). When this issue occurred, users were unable to retrieve their cached portal configuration.
GPC-7449
Fixed an issue on Mac endpoints where, if you configured the GlobalProtect portal or gateway to authenticate users through multi-factor authentication with SAML, users were intermittently unable to authenticate successfully when attempting to connect to GlobalProtect.
GPC-7422
Fixed an issue on Mac endpoints where the GlobalProtect HIP process (PanGpHip) caused high CPU usage on the endpoint after users connected to GlobalProtect.
GPC-5476
Fixed an issue with the pre-logon connect method where user tunnel creation failed if you configured the gateway to authenticate users through two-factor authentication.

GlobalProtect App 5.0.0 Addressed Issues

There are no addressed issues in GlobalProtect app 5.0.0 for Android, Chrome, Windows, Windows 10 UWP, Mac, and Linux.

Related Documentation