GlobalProtect 1.2 Plugin fails to resolve after upgrading Palo Alto Firewall from 9.x to 10.1.x

[ramganesh19]

2022-05-11 14:28:56,141 : DEBUG - 347 - globalprotect_library.py : Return status: success
2022-05-11 14:28:56,141 : DEBUG - 348 - globalprotect_library.py : Return error:
2022-05-11 14:28:56,141 : DEBUG - 53 - globalprotect_resolve.py : Found gateway: <>.
2022-05-11 14:28:56,141 : DEBUG - 110 - globalprotect_resolve.py : In is_in_current_user_gateway
2022-05-11 14:28:56,141 : DEBUG - 111 - globalprotect_resolve.py : Check if gateway <> contains host <>
2022-05-11 14:28:56,141 : ERROR - 229 - globalprotect_resolve.py : No user mapping info found. No gateway info found.
2022-05-11 14:28:56,141 : DEBUG - 69 - script_runner.py : Ready to send response.
2022-05-11 14:28:56,142 : DEBUG - 72 - script_runner.py : Done with message.

[ramganesh19]

we have multiple vsys and ip-user-mapping api is not working now

2022-05-11 14:25:20,559 : DEBUG - 26 - globalprotect_resolve.py : Resolve for GlobalProtect Connect App
2022-05-11 14:25:20,559 : DEBUG - 162 - globalprotect_resolve.py : Init library
2022-05-11 14:25:20,559 : DEBUG - 398 - globalprotect_library.py : Use Syslog: true
2022-05-11 14:25:20,559 : DEBUG - 70 - globalprotect_library.py : Server is: https://<>
2022-05-11 14:25:20,560 : DEBUG - 87 - globalprotect_library.py : In get_token
2022-05-11 14:25:20,560 : DEBUG - 93 - globalprotect_library.py : Get token url = https://<>/api/?type=keygen&user=&password=*****
2022-05-11 14:25:21,056 : DEBUG - 100 - globalprotect_library.py : Get token response code: 200
2022-05-11 14:25:21,056 : DEBUG - 182 - globalprotect_resolve.py : Call user IP mapping
2022-05-11 14:25:21,057 : DEBUG - 585 - globalprotect_library.py : in get_ip_user_mapping
2022-05-11 14:25:21,057 : DEBUG - 167 - globalprotect_library.py : In get_url
2022-05-11 14:25:21,057 : DEBUG - 231 - globalprotect_library.py : API URL = https://<>/api/?type=op&cmd=&key=****
2022-05-11 14:25:21,580 : DEBUG - 335 - globalprotect_library.py : Response code is: 200
2022-05-11 14:25:21,581 : DEBUG - 344 - globalprotect_library.py : Data is:
2022-05-11 14:25:21,581 : DEBUG - 347 - globalprotect_library.py : Return status: success
2022-05-11 14:25:21,581 : DEBUG - 348 - globalprotect_library.py : Return error:
2022-05-11 14:25:21,581 : DEBUG - 605 - globalprotect_library.py : Get user:
2022-05-11 14:25:21,582 : DEBUG - 607 - globalprotect_library.py : Get IP type:
2022-05-11 14:25:21,582 : DEBUG - 609 - globalprotect_library.py : Get location:
2022-05-11 14:25:21,582 : DEBUG - 185 - globalprotect_resolve.py : Full User:
2022-05-11 14:25:21,582 : DEBUG - 186 - globalprotect_resolve.py : IP type:
2022-05-11 14:25:21,582 : DEBUG - 187 - globalprotect_resolve.py : Virtual system:

[ramganesh19]

Temporaryly fixed by hardcoding ib globalprotect_library.py

"OC_SHOW_IP_USER_MAPPING":
"?type=op&cmd={}&vsys=vsys1",

We need to have a parameter for Vsys and pass on the method rather hardcording it

"OC_SHOW_IP_USER_MAPPING":
"?type=op&cmd={}&vsys={}",

[ramganesh19]

Forescout Team, Any plans to provide fix to the plugin.

[jjesse]

@ramganesh19 Does v 1.2.1 fix the issue here?

[lyyiheang]

Is there anyone found the solution?