Tencent Cloud

Recent Pages

SSO Authentication

Last updated: 2024-01-09 14:29:29

If you download the SSL VPN client configuration on the self-service portal, you can enable SSO authentication on the SSL VPN server.
Note: 
Currently, the SSO authentication feature is in beta test and is available only in Singapore region. To try it out, submit a ticket for application.
Prerequisites
You have created a user group, added a user, and granted the application access permission to the user group in the EIAM console.
Enabling the feature while creating an SSL VPN server
1. Log in to the VPC console.
2. Click VPN Connections > SSL VPN server on the left sidebar to enter the management page.
3. Click Create.
4. In the Create an SSL VPN server pop-up window, select Certificate verification + Identity verification for Verification method and select your EIAM application.
﻿
Parameter
Description
Protocol
Transmission protocol of the server
Port
Enter the SSL VPN server port used for data forwarding
Verification algorithm
Supported verification algorithms: SHA1 and MD5.
Encryption algorithm
Supported encryption algorithms: AES-128-CBC, AES-192-CBC, and AES-256-CBC
Compressed
No
Verification method
Certificate verification: In this verification method, the SSL VPN server can be accessed through all SSL VPN client connections by default.
Certificate verification + Identity verification: In this verification method, only connections allowed by the access control policy can be established. You can configure the access control policy for specified user groups or all users. After this option is selected, you need to select an EIAM application.
EIAM Application
An application created in the EIAM console, which is used for access control.
Access control
SSL VPN server access control switch
5. You can enable access control as needed. For more information, see Enabling Access Control.
Enabling the feature after creating an SSL VPN server
1. Log in to the VPC console.
2. Click VPN Connections > SSL VPN server on the left sidebar to enter the management page.
3. Click the name of the target instance.
4. On the instance details page, click Edit in the Server configurations section on the Basic information tab.
5. Select Certificate verification + Identity verification for Verification Method, select an EIAM application, and click Save.
﻿
﻿

Contact Us

Contact our sales team or business advisors to help your business.

Technical Support

Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

7x24 Phone Support

tencent cloud

Recent Pages

SSO Authentication

Prerequisites

Enabling the feature while creating an SSL VPN server

Enabling the feature after creating an SSL VPN server

Was this page helpful?

Was this page helpful?

Parameter	Description
Protocol	Transmission protocol of the server
Port	Enter the SSL VPN server port used for data forwarding
Verification algorithm	Supported verification algorithms: SHA1 and MD5.
Encryption algorithm	Supported encryption algorithms: AES-128-CBC, AES-192-CBC, and AES-256-CBC
Compressed	No
Verification method	Certificate verification: In this verification method, the SSL VPN server can be accessed through all SSL VPN client connections by default. Certificate verification + Identity verification: In this verification method, only connections allowed by the access control policy can be established. You can configure the access control policy for specified user groups or all users. After this option is selected, you need to select an EIAM application.
EIAM Application	An application created in the EIAM console, which is used for access control.
Access control	SSL VPN server access control switch

tencent cloud

Sign Up

Log in

Recent Pages

SSO Authentication

Prerequisites

Enabling the feature while creating an SSL VPN server

Enabling the feature after creating an SSL VPN server

Was this page helpful?

Was this page helpful?