Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

AWS client vpn selfservice

0

Hi,

I'm trying to create a VPN endpoint using AWS SSO as IdP but I'm always getting an error when doing the assertion exchange after logging.

I've created the endpoint, selected federated authentication and then selected the ARN of the SAML provider of my SSO configuration. The endpoint is created and available and associated to a VPC. Then I downloaded the AWS VPN client, created a profile using the configuration from my VPN endpoint and then I clicked on 'Connect'. That takes me to the SSO login page but after login I get an error: Oops, something went wrong Provide your administrator with the following info: Issuer of request does not match our record Request ID: <<some id>> HTTP status: 403 Any idea on what fails? Thanks.

Temas
Redes y entrega de contenido
Etiquetas
Red privada virtual (VPN) de AWS
Idioma
English
AWS-User-2359234
preguntada hace 2 años1349 visualizaciones
1 Respuesta
1

AWS Client VPN is not one of the pre-integrated applications in AWS SSO. As a workaround, create a custom SAML application in AWS SSO. This requires re-creation of AWS VPN Client Endpoint.

  1. Create a custom application in AWS SSO to be used with AWS Client VPN
  2. Create a new Identity Provider (IdP) in IAM Provider console, and use the AWS SSO as an identity provider with the custom application that was created in Step 1
  3. Finally, use the newly created IdP with AWS Client VPN
AWS
INGENIERO DE SOPORTE
Neha_S
respondido hace 2 años

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante