The following workflows describe how to set up the GlobalProtect
portal and gateways to use an external authentication service. The
supported authentication services include LDAP, Kerberos, RADIUS,
SAML, and TACACS+.
GlobalProtect also supports local authentication. To use
local authentication, create a local user database (
Device
Local User Database
)
that contains the users and groups to which you want to allow GlobalProtect
access, and then refer to that database in the authentication profile.