GlobalProtect-openconnect icon indicating copy to clipboard operation
GlobalProtect-openconnect copied to clipboard

Published 20 hours ago verified publisher icon yuezk

Globalprotect GUI gateway connection issue

Open denisShestopal opened this issue 10 months ago • 6 comments

I am using globalprotect gui version on Manjaro Linux OS and our client has it's portal, which requires 2F Auth. The process looks like:

  • You connect to the portal
  • You have a window to enter credentials
  • After you submit, there is Google Auth window which requires a code from the auth app
  • After you enter, there is a connection happening resulting in an error, then retrying several times with no success

Previously on the last step it showed an auth issue, but the window was immediately closed and vpn connected.

Screenshots attached as well as logs

Manjaro linux, GNOME v45.4 GP v2.2.1

gp-wp-error-0 gp-wp-error-1 gp-wp-error-2 gp-wp-error-log.txt

denisShestopal avatar Jan 09 '25 10:01 denisShestopal

Hi @denisShestopal, you can upgrade the client or use the default browser to authenticate.

yuezk avatar Jan 10 '25 09:01 yuezk

@yuezk hey. Setting to use default browser didn't help: it shown me an auth failure and redirected to the app gui, then afterwards I am not even seeing the window (or browser tab open) and the credentials fields are proposed in the app gui itself only, which also leads to the auth failure error.

UPD: sorry, my bad, I used a wrong path. So now upgraded to: sudo pacman -U globalprotect-openconnect-2.4.1-1-x86_64.pkg.tar.zst But now I can see the same from the above: the credentials are proposed to be entered in the app gui itself with auth issue onwards gp-wp-error-3 gp-wp-error-4

BTW, not sure why the version is still shown as 2.2.1

UPD: now I see the new version, but the result is the same: gp-wp-error-5

denisShestopal avatar Jan 10 '25 10:01 denisShestopal

Open https://gp.whirlpool.com in your browser and check if you can log in your portal.

yuezk avatar Jan 10 '25 10:01 yuezk

@yuezk No, I see Authentication failed: Invalid username or password So it means that smth goes wrong on the client side?

denisShestopal avatar Jan 10 '25 10:01 denisShestopal

That is the official login page. Unfortunately, you still can't log in.

It looks like the server side has changed because it used SAML authentication previously as you said. However, now it uses username/password authentication. You may need to contact your IT administrator about the login credentials.

yuezk avatar Jan 10 '25 12:01 yuezk

@yuezk Thanks for clarification. I will check with my admins for now

denisShestopal avatar Jan 10 '25 21:01 denisShestopal