Fixed an issue that caused the GlobalProtect 6.3.3 HIP report to fail with the error Method: WAAPI_MID_GET_AGENT_STATE

Fixed an issue where the 'agent-msg' log (Panorama > Monitor > GlobalProtect ) was not generated when a user disabled the GlobalProtect app and logged out of the gateway.

GlobalProtect app version 6.3.3 using SAML with the embedded browser loses cursor focus in the password field, requiring users to click in the password field before entering their password.

Fixed an issue where the GlobalProtect app failed to authenticate to the portal and gateway after a machine certificate was renewed by Intune MDM. A reboot was required to restore the connection.

Fixed an issue where the GlobalProtect HIP check incorrectly detected status for Symantec Endpoint Protection, which caused the device to fail the

HIP check.

Fixed an issue where the pre-login tunnel rename timeout notification would overlay other system tray icons, preventing users from accessing them

Fixed an issue where GlobalProtect clients using SAML with Ping Federate did not save the SAML token upon reboot or restart of the pangps service, requiring users to re-authenticate even when the token was not expired. This issue affected GlobalProtect client version 6.3.3 when SAML authentication was configured in Prisma Access and not in Cloud Identity Engine.

Fixed an issue where GlobalProtect HIP reports on MacBooks intermittently failed with an "Invalid client IP" error, preventing users from accessing resources over the GP tunnel. This issue occurred after a system network change when GP attempted to send the HIP report to an external gateway while the tunnel was disconnected. This issue affected MacBooks running GP version 6.2.5.

Fixed an issue where, when using a screen reader on Windows or macOS, the GlobalProtect app's Settings button did not announce the available options for the end users.

Fixed an issue where the HIP report intermittently detected MacOS XProtect "Real Time Protection" status as disabled.

Fixed an issue where the GlobalProtect HIP check failed to detect the correct version of Forticlient Antivirus, which caused the device to fail the HIP check.

Fixed an issue where the username and password fields in the GlobalProtect app had incorrect labels.

Fixed an issue where SAML authentication with Azure AD, using Cisco Duo EAM, failed after upgrading to GlobalProtect version 6.2.8

Fixed an issue where the Host Information Profile (HIP) check was unable to accurately identify key details from third-party security products.

Fixed an issue where the GlobalProtect HIP report failed to detect the status of SentinelOne, causing the device to fail the HIP check

Fixed an issue where the GlobalProtect HIP report did not detect the Status for Zoho corporation - ManageEngine Patch Manager Plus Agent, which caused the device to fail the HIP check.

Fixed and issue where the GlobalProtect HIP report failed to detect the Symantec DLP software, which caused the device to fail the HIP check.

Fixed an issue where a comment was not visible in the GlobalProtect logs when GlobalProtect was disabled with-comment.

Fixed an issue where the GlobalProtect HIP check failed to detect Workspace ONE status, which caused the device to fail the HIP check.

Fixed an issue where a notification appeared on the GlobalProtect app every 10 seconds asking the end-user to re-authenticate. This notification appeared during the pre-logon tunnel rename timeout period.