On the Select a single sign-on method page, select SAML. In the Azure portal, on the Palo Alto Networks - GlobalProtect application integration page, find the Manage section and select single sign-on. Test SSO - to verify whether the configuration works.įollow these steps to enable Azure AD SSO in the Azure portal.Create Palo Alto Networks - GlobalProtect test user - to have a counterpart of B.Simon in Palo Alto Networks - GlobalProtect that is linked to the Azure AD representation of user.Configure Palo Alto Networks - GlobalProtect SSO - to configure the single sign-on settings on application side.Assign the Azure AD test user - to enable B.Simon to use Azure AD single sign-on.Create an Azure AD test user - to test Azure AD single sign-on with B.Simon.Configure Azure AD SSO - to enable your users to use this feature.To configure and test Azure AD SSO with Palo Alto Networks - GlobalProtect, perform the following steps: For SSO to work, you need to establish a link relationship between an Azure AD user and the related user in Palo Alto Networks - GlobalProtect. Wait a few seconds while the app is added to your tenant.Ĭonfigure and test Azure AD SSO for Palo Alto Networks - GlobalProtectĬonfigure and test Azure AD SSO with Palo Alto Networks - GlobalProtect using a test user called B.Simon. Select Palo Alto Networks - GlobalProtect from results panel and then add the app.In the Add from the gallery section, type Palo Alto Networks - GlobalProtect in the search box.To add new application, select New application.Navigate to Enterprise Applications and then select All Applications.On the left navigation pane, select the Azure Active Directory service.Sign in to the Azure portal using either a work or school account, or a personal Microsoft account.
To configure the integration of Palo Alto Networks - GlobalProtect into Azure AD, you need to add Palo Alto Networks - GlobalProtect from the gallery to your list of managed SaaS apps.
If you don't have a subscription, you can get a free account. To get started, you need the following items:
Enable your users to be automatically signed-in to Palo Alto Networks - GlobalProtect with their Azure AD accounts.Control in Azure AD who has access to Palo Alto Networks - GlobalProtect.
When you integrate Palo Alto Networks - GlobalProtect with Azure AD, you can:
In this tutorial, you'll learn how to integrate Palo Alto Networks - GlobalProtect with Azure Active Directory (Azure AD).