Deploy Shared Client Certificates for Authentication
To confirm that an endpoint user belongs to
your organization, you can use the same client certificate for all
endpoints or generate separate certificates to deploy with a particular
agent configuration. Use this workflow to issue self-signed client
certificates for this purpose and deploy them from the portal.
Generate a certificate to
deploy to multiple GlobalProtect clients.
a name to identify this certificate as an agent certificate, for
example GP_Windows_clients. Because this same certificate will be deployed
to all agents using the same configuration, it does not need to
uniquely identify a specific user or endpoint.