Login to SSL VPN via SSO and then use SSO inside VPN for other Service Providers possible?

cu 29p

4/30/23, 4:05 AM

I have a setup where you authorize via SAML SSO (keycloak as idp) to access a SSL VPN (fortigate as sp). Now inside the VPN there are authorization reverse proxy servers.

Is it possible to have the same SSO automatically authorize users to the proxy servers?

Since the session of a user is saved with the IP before accessing the VPN I would think the session isn't valid after connecting to it because it has now a different IP?

0 + 0

vpn

single-sign-on

authorization

session

saml

djdomi

4/30/23, 7:47 PM

depending on the used software...?

cu 29p

5/2/23, 5:06 AM

The software doesn't matter for me right now. As long as it is possible in general. I don't know how sessions work and I don't want a client to login twice with the same credentials. Is there a keyword that will help me with this? Or is it just not possible to practically do this?

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Login to SSL VPN via SSO and then use SSO inside VPN for other Service Providers possible?

TH: เข้าสู่ระบบ SSL VPN ผ่าน SSO แล้วใช้ SSO ภายใน VPN สำหรับผู้ให้บริการรายอื่นได้หรือไม่

RO: Este posibil să vă autentificați la SSL VPN prin SSO și apoi să utilizați SSO în interiorul VPN pentru alți Furnizori de servicii?

RU: Войдите в SSL VPN через SSO, а затем используйте SSO внутри VPN для других поставщиков услуг?

VI: Có thể đăng nhập vào SSL VPN qua SSO và sau đó sử dụng SSO bên trong VPN cho các Nhà cung cấp dịch vụ khác không?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.