PittNet VPN (GlobalProtect) | Information Technology | University of Pittsburgh

You are here

PittNet VPN (GlobalProtect)

Quick Links: Key Benefits I Requirements I Getting Started I More Resources

The GlobalProtect VPN client provides students, faculty, and staff with the ability to connect to restricted University resources while on and off campus. The GlobalProtect client is required to connect remotely to your office computer or for accessing departmental databases and servers that reside behind network firewalls. 

The GlobalProtect client provides the additional benefit of obtaining the user’s identity to make use of directory and security policies. GlobalProtect provides users with the flexibility to connect to restricted University resources while on campus or from home.  While off campus or wireless, the service encrypts traffic between a user’s computer and the University’s network. The service provides more security to University resources to help ensure that remote computers comply with our security framework.

Key Benefits

  • Privacy protection: Use for added safety and confidentiality for public and private network connections.
  • Improved security: Assist with ensuring University network security while connected on and off campus.
  • Increased Session Length: Supports longer sessions, avoiding timeout restrictions found in other VPN clients.
  • Mobility: Securely access University resources from anywhere, on or off campus.
  • Access restricted resources: Securely access a private network and share data remotely through public networks.
  • Improved network connectivity via a virtual private network (VPN): Easily and quickly establish long-distance, secure encrypted network connections with high throughput.


Connections through GlobalProtect require:

  1. A University of Pittsburgh student, faculty, staff, or sponsored account is required for Global Protect connections.
    Note: You must have registered a device for multifactor authentication before you can establish a secure connection. To request a sponsored account, follow these guidelines.
  2. The Global Protect client is required. The Windows, macOS, or Linux client can be obtained via the Software Download Service. An app is available the Apple App Store (iOS), the Google Play store (Android), and the and the Microsoft Store (Windows 10 mobile devices). 
  3. GlobalProtect establishes a connection from devices to the University's network by first verifying the device as a trusted device. Through such a Health Check, Global Protect reviews configuration settings on devices each time it connects. If the requirements are not met, the device's connection through GlobalProtect is denied. To pass the Health Check, devices must meet the following criteria:
  • A supported, up-to-date operating system:
    • Macintosh, Linux, Android, and iOS automatically pass the Health Check.
    • Windows 10 with Microsoft Automatic Software Update turned on, so you can receive the latest security patches.
  • A software firewall must be installed and enabled on your computer.
  • An approved antivirus solution check must be passed.
    Note: This is just a baseline check of your antivirus that the vendor manages.

Getting Started

The following information is used when connecting with GlobalProtect:

Connecting with Windows or macOS

Download and Installation

Connecting with Windows or macOS

  1. Open GlobalProtect.
  2. In the Portal address textbox type portal-palo.pitt.edu, then click Connect.
    Note: UPMC users also enter portal-palo.pitt.edu.

  3. Enter your your Pitt credentials, then click Connect.
  4. Enter "push" to log in using multifactor authentication using your default device.   
    Note: You should also see a connected icon in your taskbar or menu ribbon.
  5. A pop-up window will display that reads "Connecting...". Once you are connected, it will read "Connected.
  6. When finished, locate and click the GlobalProtect icon, click the three-lined icon from the right-hand side of the connection window, then click Disconnect.

    Note: You will be able to log to PittNet VPN (GlobalProtect) by clicking Enable.

Connecting an Android Device

  1. Open the app.
  2. Enter portal-palo.pitt.edu.
    Note: UPMC users also enter portal-palo.pitt.edu.
  3. Tap Connect.
    Note: As a first-time user, you may see a pop-up message saying "Cannot Verify Server Identity." Ignore this message.
  4. Tap Continue.
  5. Enter your Pitt credentials, then tap Sign In
  6. Tap OK. Once connected, the app displays a green shield icon on a blue background.
  7. To disconnect from the VPN, tap the shield. When disconnected, the app will display a grey shield on a grey background. 
  8. To change settings or sign out, tap the menu icon in the top left. 

Review list of compatible operating systems ...

Connecting a Chromebook

  1. Open the GlobalProtect app.
  2. Enter portal-palo.pitt.edu, then click Add Connection.
    Note: UPMC users also enter portal-palo.pitt.edu.
  3. Click the status area in the bottom-right corner of the screen to pop up a menu.
  4. Select VPN Disconnected, then click the entry.
  5. Enter your Pitt Credentials, then click Connect.
  6. When you are finished accessing University resources, please end your GlobalProtect connection.

Review list of compatible operating systems ...

Connecting an iOS Device

  1. Open the GlobalProtect app.
  2. Tap Allow to get notifications.
  3. Enter portal-palo.pitt.edu.
    Note: UPMC users also enter portal-palo.pitt.edu.
  4. Tap Allow to add the VPN configuration to this device.
  5. Enter your Pitt credentials, then tap Sign In.
  6. Log in using multifactor authentication.
  7. You will be connected. When you are finished, tap Disconnect.

Review list of compatible operating systems ...

More Ways to Get the Most from GlobalProtect: