Palo Alto Networks GlobalProtect

GlobalProtect extends the Palo Alto Networks next-generation firewall solution to remote and mobile workers, extending the policies used within the physical network boundaries out to employees working from home, on the road or connecting via VPN, providing them with the same protection levels as if they were working from the office.






GlobalProtect effectively establishes a logical perimeter that encompasses remote laptop and mobile device users irrespective of their location. When a remote user logs into the device, GlobalProtect automatically determines the closest gateway available to the roaming device and establishes a secure connection using strong authentication. Laptop and mobile devices will stay connected to the corporate network at all times, and protected as if they never left the corporate campus.

The operational challenges associated with creating and managing separate policies for corporate firewalls and remote users are now easily eliminated. In addition to policy criteria of applications, users and content, GlobalProtect enables administrators to also set policy based on the health or status of the device. With GlobalProtect, policies can be expanded to include the security level of a Microsoft Windows-based or Apple Mac OS X device, e.g. the latest operating system patches or other settings required by corporate security policy. New with the release of PAN OS 4.1, Palo Alto Networks has extended the same security policies protecting Microsoft Windows users to iPad and iPhone users.

How Does It Work?

GlobalProtect enables remote users to access the corporate network by automatically establishing either an SSL or IPSec-based VPN connection depending on location and configuration. The remote access connection is authenticated through one of several mechanisms (local DB, RADIUS, LDAP, Active Directory and Smartcards) and once the secure remote connection is established, users are protected by the same security policies as corporate users.

Benefits:

  • Standardised control of applications, users and content, irrespective of location
  • Protects the network from out-of-date laptops and PCs
  • Single Sign-on streamlines login process

Platform Support

  • Windows XP, Vista, Windows 7
  • Mac OS X 10.6
  • Apple iOS 4.3 and 5.0