Ao usar o AWS re:Post, você concorda com os AWS re:Post Termos de uso
AWS re:Postre:Post

AWS Client VPN Setup "The config should have either cert and key, auth-user-pass or auth-federate specified."

0

Error message: "The config should have either cert and key, auth-user-pass or auth-federate specified."

How can we fix this problem?

Tópicos
Rede e entrega de conteúdo
Tags
VPN para clientes da AWS
Idioma
English
rePost-User-9605316
feita há um ano1945 visualizações
2 Respostas
0

Thank you for your reply. But this information is not documented in any AWS documents. Strange.

rePost-User-9605316
respondido há um ano
  • Gary Mclean ESPECIALISTA
    há um ano

    Yes there is. I added link to my answer

0

AWS Client VPN requires you to use Client and Service certificates for authentication when connecting to the VPN Endpoint or Federated authentication using SSO such as Azure AD, ADFS, AWS Identity centre or Google using SAML

Without one of these options, you cant authenticate users.

If you do not have any way to authenticate users using a directory, you can actually use Identify Centre as an SSO source and authenticate users here via a SAML .

Otherwise you need to use OPENSSL and create your certs and manage users that way. This its self adds an overhead to manage certificates and revocation of them too

https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/client-authentication.html

profile picture
ESPECIALISTA
Gary Mclean
respondido há um ano
  • rd888
    há 9 meses

    i downloaded the client config from the Client VPN endpoint in the console. This file does include some certificates but no key. is that why the AWS VPN client will not create the profile?

Você não está conectado. Fazer login para postar uma resposta.

Uma boa resposta responde claramente à pergunta, dá feedback construtivo e incentiva o crescimento profissional de quem perguntou.

Diretrizes para responder a perguntas

Conteúdo relevante