Cortex Xpanse can ingest data from GlobalProtect to identify risks associated with your remote worker networks and devices.
GlobalProtect is a powerful VPN technology offered by Palo Alto Networks that can be deployed through Next-Gen Firewalls (NGFW) and Prisma Access. Cortex Xpanse ingests this data for all devices that have initiated a session with GlobalProtect within the last 24 hours to identify devices that belong to your organization. Cortex Xpanse displays all of the networks that your GlobalProtect devices are connected to and categorizes each network as either Remote (if the network’s IP address does not overlap with your organization’s asset map) or Corporate (if the network IP address overlaps with your organization's asset map). Cortex Xpanse also enables you to drill down into each network to see the list of individual devices using it.
Cortex Xpanse cross references GlobalProtect client data with its own global scan data to identify issues and services running on the networks where employees are located. This functionality enables you to find the risky services and issues associated with your remote worker networks and devices.