En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

AWS Client VPN Setup "The config should have either cert and key, auth-user-pass or auth-federate specified."

0

Error message: "The config should have either cert and key, auth-user-pass or auth-federate specified."

How can we fix this problem?

Sujets
Réseaux et diffusion de contenu
Balises
Client VPN AWS
Langue
English
rePost-User-9605316
demandé il y a un an1945 vues
2 réponses
0

Thank you for your reply. But this information is not documented in any AWS documents. Strange.

rePost-User-9605316
répondu il y a un an
  • Gary Mclean EXPERT
    il y a un an

    Yes there is. I added link to my answer

0

AWS Client VPN requires you to use Client and Service certificates for authentication when connecting to the VPN Endpoint or Federated authentication using SSO such as Azure AD, ADFS, AWS Identity centre or Google using SAML

Without one of these options, you cant authenticate users.

If you do not have any way to authenticate users using a directory, you can actually use Identify Centre as an SSO source and authenticate users here via a SAML .

Otherwise you need to use OPENSSL and create your certs and manage users that way. This its self adds an overhead to manage certificates and revocation of them too

https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/client-authentication.html

profile picture
EXPERT
Gary Mclean
répondu il y a un an
  • rd888
    il y a 9 mois

    i downloaded the client config from the Client VPN endpoint in the console. This file does include some certificates but no key. is that why the AWS VPN client will not create the profile?

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents