You can enable deployment of custom scripts
to Windows endpoints using the Windows registry.
You can configure
the GlobalProtect agent to initiate and run a script for any or
all of the following events: before and after establishing the tunnel,
and before disconnecting the tunnel. To run the script at a particular
event, reference the batch script from a command registry entry
for that event.
Depending on the configuration settings, the
GlobalProtect agent can run a script before and after the agent
establishes a VPN tunnel with the gateway, and before the agent
disconnects from the VPN tunnel. Use the following workflow to get
started using the Windows registry to customize agent settings for
The registry settings that enable you
to deploy scripts are supported in GlobalProtect clients running
GlobalProtect agent 2.3 and later releases.
Open the Windows registry, and locate the GlobalProtect
agent customization settings.
Open the Windows registry (enter
the command prompt) and go to the location of the key depending
on when you want to execute scripts (pre/post connect or pre disconnect):