If you download the SSL VPN client configuration on the self-service portal, you can enable SSO authentication on the SSL VPN server. Note:
Currently, the SSO authentication feature is in beta test and is available only in Singapore region. To try it out, submit a ticket for application. Prerequisites
You have created a user group, added a user, and granted the application access permission to the user group in the EIAM console.
Enabling the feature while creating an SSL VPN server
2. Click VPN Connections > SSL VPN server on the left sidebar to enter the management page.
3. Click Create.
4. In the Create an SSL VPN server pop-up window, select Certificate verification + Identity verification for Verification method and select your EIAM application.
|
Protocol | Transmission protocol of the server |
Port | Enter the SSL VPN server port used for data forwarding |
Verification algorithm | Supported verification algorithms: SHA1 and MD5. |
Encryption algorithm | Supported encryption algorithms: AES-128-CBC, AES-192-CBC, and AES-256-CBC |
Compressed | No |
Verification method | Certificate verification: In this verification method, the SSL VPN server can be accessed through all SSL VPN client connections by default. Certificate verification + Identity verification: In this verification method, only connections allowed by the access control policy can be established. You can configure the access control policy for specified user groups or all users. After this option is selected, you need to select an EIAM application. |
EIAM Application | An application created in the EIAM console, which is used for access control. |
Access control | SSL VPN server access control switch |
Enabling the feature after creating an SSL VPN server
2. Click VPN Connections > SSL VPN server on the left sidebar to enter the management page.
3. Click the name of the target instance.
4. On the instance details page, click Edit in the Server configurations section on the Basic information tab.
5. Select Certificate verification + Identity verification for Verification Method, select an EIAM application, and click Save.
Was this page helpful?