Loading..Sometimes, GlobalProtect tries to validate certificates over IPv6, which fails if the gateway isn't configured properly.
# Windows: w32tm /query /status # macOS/Linux: date
If you are using (machine certs) in the profile:
Open the GlobalProtect app, click the three-line menu (hamburger) , and select Refresh Connection to pull down the latest portal settings.
The client could not validate the server’s TLS certificate chain or hostname. Causes: expired or untrusted CA, missing intermediate certs, hostname mismatch, clock skew on client, local certificate store problems, or interception by a proxy/inspection device.
Sometimes, GlobalProtect tries to validate certificates over IPv6, which fails if the gateway isn't configured properly.
# Windows: w32tm /query /status # macOS/Linux: date
If you are using (machine certs) in the profile:
Open the GlobalProtect app, click the three-line menu (hamburger) , and select Refresh Connection to pull down the latest portal settings.
The client could not validate the server’s TLS certificate chain or hostname. Causes: expired or untrusted CA, missing intermediate certs, hostname mismatch, clock skew on client, local certificate store problems, or interception by a proxy/inspection device.