Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

AWS Client VPN Setup "The config should have either cert and key, auth-user-pass or auth-federate specified."

0

Error message: "The config should have either cert and key, auth-user-pass or auth-federate specified."

How can we fix this problem?

Argomenti
Networking e distribuzione di contenuti
Tag
VPN per clienti AWS
Lingua
English
rePost-User-9605316
posta un anno fa1943 visualizzazioni
2 Risposte
0

Thank you for your reply. But this information is not documented in any AWS documents. Strange.

rePost-User-9605316
con risposta un anno fa
  • Gary Mclean ESPERTO
    un anno fa

    Yes there is. I added link to my answer

0

AWS Client VPN requires you to use Client and Service certificates for authentication when connecting to the VPN Endpoint or Federated authentication using SSO such as Azure AD, ADFS, AWS Identity centre or Google using SAML

Without one of these options, you cant authenticate users.

If you do not have any way to authenticate users using a directory, you can actually use Identify Centre as an SSO source and authenticate users here via a SAML .

Otherwise you need to use OPENSSL and create your certs and manage users that way. This its self adds an overhead to manage certificates and revocation of them too

https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/client-authentication.html

profile picture
ESPERTO
Gary Mclean
con risposta un anno fa
  • rd888
    9 mesi fa

    i downloaded the client config from the Client VPN endpoint in the console. This file does include some certificates but no key. is that why the AWS VPN client will not create the profile?

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente