Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

AWS Client VPN Setup "The config should have either cert and key, auth-user-pass or auth-federate specified."

0

Error message: "The config should have either cert and key, auth-user-pass or auth-federate specified."

How can we fix this problem?

Temas
Redes y entrega de contenido
Etiquetas
VPN de cliente de AWS
Idioma
English
rePost-User-9605316
preguntada hace un año1945 visualizaciones
2 Respuestas
0

Thank you for your reply. But this information is not documented in any AWS documents. Strange.

rePost-User-9605316
respondido hace un año
  • Gary Mclean EXPERTO
    hace un año

    Yes there is. I added link to my answer

0

AWS Client VPN requires you to use Client and Service certificates for authentication when connecting to the VPN Endpoint or Federated authentication using SSO such as Azure AD, ADFS, AWS Identity centre or Google using SAML

Without one of these options, you cant authenticate users.

If you do not have any way to authenticate users using a directory, you can actually use Identify Centre as an SSO source and authenticate users here via a SAML .

Otherwise you need to use OPENSSL and create your certs and manage users that way. This its self adds an overhead to manage certificates and revocation of them too

https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/client-authentication.html

profile picture
EXPERTO
Gary Mclean
respondido hace un año
  • rd888
    hace 9 meses

    i downloaded the client config from the Client VPN endpoint in the console. This file does include some certificates but no key. is that why the AWS VPN client will not create the profile?

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante