How to configure SAML app in Google for AWS Client VPN and self service portal

Asked Jun 10 '21 at 03:19

Active Jun 10 '21 at 03:19

Viewed 1,400 times

I want to set up AWS Client VPN with SAML authentication through Google.

I got the actual VPN connection to work by following among others this: AWS VPN using federated login with Google IdP - app_not_configured_for_user

I'd like to also enable the self service portal with SAML authentication as described here: https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/client-authentication.html#federated-authentication Google only supports one ACS URL, so I am supposed to create a second app. While the above link is not super specific about it, I assume urn:amazon:webservices:clientvpn should be used for that as well. But when I try to create a second app I get an error saying the Entity ID should be unique and can't proceed because it's already used by the first app.

So the question is: how to I configure Google so I can use the Client VPN and the self service portal with SAML?

asked Jun 10 '21 at 03:19

Sebastian Blask

2,870
1
16
29

did you ever have any luck with this? Thanks... – ambe5960 Jan 28 '22 at 07:11
1

@ambe5960 Nah, gave up on it. We have internal documentation anyway so I added the config file and other links there. – Sebastian Blask Jan 31 '22 at 00:44
Thanks. Don't think it's possible. Check out perimeter81 for anyone struggling with this. Cheaper and more admin/user friendly. – ambe5960 Jan 31 '22 at 01:16

How to configure SAML app in Google for AWS Client VPN and self service portal

0 Answers0