GlobalProtect is a widely used VPN app for schools and works. In my use case, I need to log into the school network via GlobalProtect in order to SSH into the server. GlobalProtect works out of the box for Mac and Windows. However, on Linux, it is common that GlobalProtect encounters SSL handshake failure due to deprecated dependency packages as follows:

SSL handshake failed
Failed to load URL https://[your organization].

Don't panic! You are not alone. A simple solution is to tweak your OS's OpenSSL configuration file. Usually, it locates at /usr/lib/ssl/openssl.cnf. You need to either add or edit:

[system_default_sect]
Options = UnsafeLegacyRenegotiation