Global Protect

GlobalProtect aka Global Protect or Palo Alto GlobalProtect - a Software based VPN solution. Less secure than an external independent hardware VPN device.

Two components to consider as a client user:

1. Duo Two Factor Authentication (2FA)
2. GlobalProtect VPN Agent

Developer's Propaganda

GlobalProtect for Windows Unified Platform connects to a GlobalProtect gateway on a Palo Alto Networks next-generation firewall allowing mobile users to benefit from the protection of enterprise security. The app automatically adapts to the end-user's location and connects the user to the optimal gateway in order to deliver the best performance for all users and their traffic, without requiring any effort from the user. This allows users to work safely and effectively at locations outside of the traditional office. Before installing this app, please check with your IT department to ensure that your organization has enabled a GlobalProtect gateway subscription on the firewall. Features: Automatic VPN connection - Automatic discovery of optimal gateway - Connect via SSL - Supports all of the existing PAN-OS authentication methods including Kerberos, RADIUS, LDAP, client certificates, and a local user database - Provides the full benefit of the native experience and allows users to securely use any app Requirements: Network administrators; please contact your Palo Alto Networks sales representative or channel partner to add GlobalProtect gateway subscription to your firewalls in order to enable support for GlobalProtect for Windows Unified Platform. Supported on Palo Alto Networks next-generation firewalls running PAN-OS 7.0 and 7.1.

GlobalProtect (the VPN Agent)

Generally, You will need to install and authenticate the Duo Two-Factor Authentication (2FA) tool. GlobalProtect Client performs a Health Check by scanning your Windows updates and patch level and probing your system (invasion of privacy?) to ensure that it is at a level the product developers find acceptable. GlobalProtect VPN client is currently supported and available for Windows and Mac clients.

To launch and use this VPN run the GlobalProtect VPN agent on your local system (workstation or device), then Authenticate on the remote VPN network using DUO 2-Factor Authentication. The remote VPN is typically the company network.

warnings

GlobalProtect does not seem to like Windows 10 Display Scaling on systems with mixed resolutions or different sized displays.

GlobalProtect is a software VPN solution thus vulnerable in the way that Windows 10 lacks acceptable security against various cyber threats.

workforce privacy violations

From the software's own interface which reads as follows:

VPN Connected

This system is for the use of authorized users only. Individuals using this computer system 
without authority, or in excess of their authority, are subject to having all of their activities 
on this system monitored and recorded by system personnel. In the course of monitoring individuals 
improperly using this system, or in the course of system maintenance, the activities of authorized 
users may also be monitored. Anyone using this system expressly consents to such monitoring and is 
advised that if such monitoring reveals possible evidence of criminal activity, system personnel 
may provide the evidence of such monitoring to law enforcement officials.

As an employee the company you work for may have computer staff watching your activity.