Set Up the GlobalProtect Cloud Service
Provides quick steps to implement GlobalProtect cloud service.
The following workflow provides you with the summary steps that you take to install and configure GlobalProtect cloud service.
For more detailed steps to configure your service infrastructure, service connection, mobile users, and remote networks, see Roll Out Your GlobalProtect Cloud Service Implementation.
If you are setting up a deployment that includes multiple instances of GlobalProtect cloud services on a single Panorama (multi-tenancy), see Manage Multiple Tenants in GlobalProtect Cloud Service. Most organizations do not have a need to create and manage multiple tenants.
- Identify your license requirements; then License and Install the GlobalProtect Cloud Service Components.
- Import your existing
Panorama configuration to GlobalProtect cloud service, or
create new templates and device groups to begin
configuration of GlobalProtect cloud service.There are some configuration differences between existing on-premise firewall configurations and a GlobalProtect cloud service configuration. For a list of features that GlobalProtect cloud service supports, see What features does GlobalProtect cloud service support?
- Enable the service infrastructure that allows communication between GlobalProtect cloud service elements.
- (Optional) Set up the Log Forwarding app to forward logs from Cortex Data Lake (formerly Logging Service) to an external Syslog receiver.
- Plan and configure the GlobalProtect cloud service for mobile users, if required for your deployment.
- Create and configure
service connections.(Optional) Configure BGP and quality of service (QoS) for your service connection.
- Plan, create and configure
remote network connections.(Optional) Configure BGP and QoS for your remote network connection.
- Retrieve the IP addresses
for remote networks and mobile users.You whitelist these addresses on your organization’s network to limit inbound access to your enterprise network and applications.
Plan the GlobalProtect Cloud Service Infrastructure
Prepare and Configure the GlobalProtect Cloud Service Infrastructure Use the sections in the following chapter to plan and begin configuration of your GlobalProtect cloud service ...
GlobalProtect Cloud Service
GlobalProtect Cloud Service As your business is expanding globally with new remote network locations popping up around the globe and mobile users roaming the world, ...
GlobalProtect Cloud Service Infrastructure Management
GlobalProtect Cloud Service Infrastructure Management It is important to understand who owns and manages the components in the GlobalProtect cloud service infrastructure. To see when ...
Enable the Service Infrastructure
Enable the Service Infrastructure Before you can begin setting up the GlobalProtect cloud service to secure your remote networks and/or mobile users, you must configure ...
Plan the Service Infrastructure and Service Connections
Plan the Service Infrastructure and Service Connections Plan the Service Infrastructure To Enable the Service Infrastructure in the cloud for your remote network locations and ...
Configure the GlobalProtect Cloud Service for Remote Networ...
Configure the GlobalProtect Cloud Service for Remote Networks For each remote network that you want to secure using the GlobalProtect cloud service for remote networks, ...
Roll Out Your GlobalProtect Cloud Service Implementation
Design a roll out plan that allows you to get started quickly and then incrementally tackle new and more complex use cases. ...
Create a Service Connection
Create a Service Connection To create a service connection to allow access to your corporate resources, complete the following steps. Select Panorama Cloud Services Configuration ...
GlobalProtect Cloud Service Overview
Read this section to get an idea of what GlobalProtect cloud service is and does. ...