GlobalProtect Portals Agent HIP Data Collection Tab
- NetworkGlobalProtectPortals<portal-config>Agent<agent-config>HIP Data Collection
Select the HIP Data Collection tab to define the data that the app collects from the endpoint in the HIP report:
GlobalProtect HIP Data Collection Configuration Settings
Collect HIP Data
Clear this option to prevent the app from collecting and sending HIP data.
Enable GlobalProtect to collect HIP data for HIP-based policy enforcement, so the firewall can match HIP data from endpoints against the HIP objects and/or HIP profiles you define and then apply the appropriate policy.
Max Wait Time (sec)
Specify how many seconds the app should search for HIP data before submitting the available data (range is 10-60; default is 20).
Select the certificate profile that the GlobalProtect portal uses to match the machine certificate sent by the GlobalProtect app.
Select Exclude Categories to specify the host information categories for which you do not want the app to collect HIP data. Select a Category (such as data-loss-prevention) to exclude from HIP collection. After selecting a category, you can Add a particular Vendor and, then, you can Add specific products from the vendor to further refine the exclusion as needed. Click OK to save settings in each dialog.
Select Custom Checks to define custom host information you want the app to collect. For example, if you have any required applications that are not included in the Vendor or Product lists for creating HIP objects, you can create a custom check to determine whether that application is installed (it has a corresponding Windows registry or Mac plist key) or is currently running (has a corresponding running process):
Configure HIP-Based Policy Enforcement
Configure HIP-Based Policy Enforcement To enable the use of host information in policy enforcement, you must complete the following steps. For more information on the ...
Collect Application and Process Data From Endpoints
Collect Application and Process Data From Endpoints The Windows Registry and macOS plist can be used to configure and store settings for Windows and Mac ...
GlobalProtect Portals Portal Data Collection Tab
GlobalProtect Portals Portal Data Collection Tab Select Network GlobalProtect Portals Portal Data Collection to define the data that the GlobalProtect app collects from endpoints and ...
What Data Does the GlobalProtect App Collect?
What Data Does the GlobalProtect App Collect? By default, the GlobalProtect app collects vendor-specific data about the end user security packages that are running on ...
HIP Objects Custom Checks Tab
HIP Objects Custom Checks Tab Objects GlobalProtect HIP Objects Custom Checks Select the Custom Checks tab to enable HIP matching on any custom checks you ...
HIP-Based Policy Enforcement Based on the Endpoint Status
HIP-Based Policy Enforcement Based on the Endpoint Status Use the following steps to enforce HIP-based security policies based on the status of connecting endpoints: To ...
Define the GlobalProtect Agent Configurations
Define the GlobalProtect Agent Configurations After a GlobalProtect user connects to the portal and is authenticated by the GlobalProtect portal, the portal sends the agent ...
Agent Configurations Based on Software and App Settings
Agent Configurations Based on Software and App Settings Use the following steps to push agent configurations to connecting endpoints based on the presence of specific ...
Objects > GlobalProtect > HIP Objects
Objects > GlobalProtect > HIP Objects Select Objects GlobalProtect HIP Objects to define objects for a host information profile (HIP). HIP objects provide the matching ...