영진채.15505 (Customer) asked a question.
SAML App auth error for Paloalto SASE Globalprotect
Hello,
I have created a custom SAML application for SASE using Okta.
In the App Settings and Gateway Settings of Prisma Access SASE GlobalProtect, there are two checkboxes:
- Generate cookie for authentication override
- Accept cookie for authentication override
When attempting the initial login through Okta, an Authentication failed error occurs.
However, after the user manually logs out of GP and tries to log in again, the authentication is successful.
Is there anyone who can help with this issue?
Thank you."
Hello @영진채.15505 (Customer) Thank you for reacting out to our Community!
I have looked for any documentation or similar issue on our side and was, unfortunately, unable to find anything specific for this issue. It also seems these settings are on PaloAlto side and as such I would recommend to review the Okta logs and PaloAlto logs to see if you spot there what could cause this issue. We would also recommend to reach out to PaloAlto support for additional insight on this matter.
Community members help others by clicking Like or Select as Best on responses. Try it today.
Ask Away: OIG Product Experts Answer Your Questions Thru Thur., Dec 14
Earn Today: New Okta Community Badges Have Arrived