tencent cloud

Feedback

SSO Authentication

Last updated: 2022-08-09 18:37:05

    If you download the SSL VPN client configuration on the self-service portal, you can enable SSO authentication on the SSL VPN server.

    Note:

    Currently, the SSO authentication feature is in beta test and is available only in Singapore region. To try it out, submit a ticket for application.

    Prerequisites

    You have created a user group, added a user, and granted the application access permission to the user group in the EIAM console.

    Enabling the feature while creating an SSL VPN server

    1. Log in to the VPC console.

    2. Click VPN Connections > SSL VPN server on the left sidebar to enter the management page.

    3. Click Create.

    4. In the Create an SSL VPN server pop-up window, select Certificate verification + Identity verification for Verification method and select your EIAM application.

      Parameter Description
      Protocol Transmission protocol of the server
      Port Enter the SSL VPN server port used for data forwarding
      Verification algorithm Supported verification algorithms: SHA1 and MD5.
      Encryption algorithm Supported encryption algorithms: AES-128-CBC, AES-192-CBC, and AES-256-CBC
      Compressed No
      Verification method
      • Certificate verification: In this verification method, the SSL VPN server can be accessed through all SSL VPN client connections by default.
      • Certificate verification + Identity verification: In this verification method, only connections allowed by the access control policy can be established. You can configure the access control policy for specified user groups or all users. After this option is selected, you need to select an EIAM application.
      EIAM Application An application created in the EIAM console, which is used for access control.
      Access control SSL VPN server access control switch
    5. You can enable access control as needed. For more information, see Enabling Access Control.

    Enabling the feature after creating an SSL VPN server

    1. Log in to the VPC console.
    2. Click VPN Connections > SSL VPN server on the left sidebar to enter the management page.
    3. Click the name of the target instance.
    4. On the instance details page, click Edit in the Server configurations section on the Basic information tab.
    5. Select Certificate verification + Identity verification for Verification Method, select an EIAM application, and click Save.
    Contact Us

    Contact our sales team or business advisors to help your business.

    Technical Support

    Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

    7x24 Phone Support