Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Authentication broken against login.microsoftonline.com with AWS VPN Client 5.3.1

0

Similar Issue to https://repost.aws/questions/QUR9vfl26ITaCeDrQA56gsYg/latest-google-chrome-breaks-aws-client-vpn-saml-auth

Setup

  • AWS VPN Client 5.3.1
  • Google Chrome Version 141.0.7390.108 (Official Build) (64-bit)
  • Windows ** Edition Windows 11 Pro
    ** Version 25H2
    ** OS build 26200.6899

VPN Logs

AUTH: Received control message: AUTH_FAILED,CRV1:R:instance-2/...':https://login.microsoftonline.com/...
SAML ACS was not able to process the request
System.Net.HttpListenerException (0x80004005): The request is not supported
at System.Net.HttpListener.EndGetContext(IAsyncResult asyncResult)
at ACVC.Core.Saml.SamlAcs.ProcessContext(IAsyncResult result)
Received event from acs
Acs failure has occured
Exception occurred when processing OVPN messages in SamlAuthenticator

Results

Chrome window only shows: http://127.0.0.1:35001/ ERR_CONNECTION_REFUSED

Does not work in Edge neither Firefox.

Topics
ComputeNetworking & Content Delivery
Tags
AWS Client VPNWindows
Language
English
asked 8 months ago142 views
1 Answer
5

Seems no clue from AWS Client VPN but we need to wait for updates, you may consider:

  1. Add policy under Chrome to InsecurePrivateNetworkRequestsAllowed: true but may introduce security concern
  2. Consider alternative OpenVPN client that supports SAML https://github.com/samm-git/aws-vpn-client
EXPERT
answered 8 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content