64 questions
1
vote
0
answers
31
views
Unable to receive access token after Microsoft login - "AX Lookup problem" error
I am working on integrating Microsoft Authentication into my app. After successfully logging in to a Microsoft account, I am unable to receive the access token. Instead, I encounter the following ...
- 151
0
votes
0
answers
102
views
Interact with openconnect in java processbuilder
I am attempting to establish a VPN connection using a ProcessBuilder in Java. However, the process seems to block, and entering my password has no effect.
I am unable to include my username and ...
- 732
0
votes
0
answers
667
views
openconnect fails to keep running in the background in a terminal that's closed
This is a spin-off from other post.
This command retrieves a password from keepassxc, prints it as stdin to an openconnect (for VPN connection) command, and the process goes to the background.
sh -c '...
- 356
0
votes
0
answers
226
views
Client Using VPN(Cisco OpenConenct) breaks TCP connection. C#. SuperSimpleTCP
I'm using C# .Net with SuperSimpleTCP Library to make a simple messaging app.
The App works just fine in Normal circumstances. But if the client is connected to a VPN(cisco openconnect) Client will ...
3
votes
1
answer
8k
views
DTLS handshake failed in ocserv and openconnect
I configured the ocserv on my Ubuntu server with this specefication in /etc/ocserv/ocserv.conf file:
auth = "plain[passwd=/etc/ocserv/ocpasswd]"
tcp-port = 443
udp-port = 443
run-as-user = ...
- 157
0
votes
0
answers
885
views
PKCS11 error wile using USB Token vs SmartCard
I am trying to use SafeNet eToken 5300 (manufacturerID: Gemalto; model: ID Prime MD) for client certificate authentication in openconnect VPN client. The connection failed.
When the SmartCard (...
- 1
2
votes
0
answers
1k
views
OpenIdDict with multiple AddValidation for an ASP.NET core/6.0 API
I'm having a RESTful Asp.NET Core/6.0 API, were I'm using an separate Auth-Server with OpenIdDict.
My problem is I created two applications
one with grant-type Client-credentials (for machine-to-...
- 21
1
vote
1
answer
4k
views
KeyCloak login with Google in Flutter/Android app
I am working on a Flutter app, which uses KeyCloak for Authorization in the backend. Login with username and password is implemented. I want to implement login with Google. Do anyone know, which ...
- 668
1
vote
0
answers
488
views
TPM, Openconnect. The requested PKCS #11 object is not available
I have a problem with openconnect VPN using TPM and certificate.
Using certificate file /etc/pki/XXXX/XXXXX.crt
Error importing PKCS#11 URL pkcs11:model=SLB9670;manufacturer=Infineon;serial=...
- 371
0
votes
1
answer
1k
views
ocserv could not execute script for the incoming connection
connect-script = /app/connect.sh
disconnect-script = /app/disconnect.sh
I have the above configuration in my ocserv.conf in the docker container, but ocserv fails to execute /app/connect.sh when ...
- 3,560
0
votes
0
answers
28
views
Why is my file with redirected stderr empty? [duplicate]
I am using OpenConnect 8.10 on Windows using binaries from https://github.com/horar/openconnect/releases/tag/v8.10
This is the output of openconnect.exe:
No server specified
Usage: openconnect [...
- 6,299
0
votes
1
answer
2k
views
Keycloak login by skipping the login page
I have 2 different applications: say Application1 and Application2.
I have integrated Application2 with keycloak and I am able to login to this application using Keycloak's login page.
Now what I want ...
- 117
2
votes
0
answers
3k
views
DTLS handshake problems with ocserv
I have a problem with the configuration of ocserv on CentOS 8. When I try to connect, a DTLS handshake problem occurs on the client side:
16:50:51 LIB: DTLS handshake timed out
16:50:51 LIB: DTLS ...
1
vote
1
answer
4k
views
Redirection unexpected /bin/sh: 1:
I am receiving this error:
/bin/sh: 1: Syntax error: redirection unexpected
Traceback (most recent call last):
File "vpntest.py", line 24, in <module>
output = check_output(...
user13687047
0
votes
1
answer
255
views
OpenIDConnect Certified Relying Party Servers vs Certified OpenID Provider Servers
I was looking at the OpenIDConnect developer section https://openid.net/developers/certified/. There are multiple sections like:
Certified Relying Party Libraries
Certified Relying Party Servers and ...
- 4,395
0
votes
1
answer
348
views
Error cross-compiling openconnect-8.08 for android
When i follow instructions here, i get this error when running latest instruction that is "make":
make[1]: Entering directory '/home/fasegiar/Downloads/openconnect-8.08'
CC libopenconnect_la-...
2
votes
0
answers
360
views
OpenConnect VpnService for Android
As I know there no API to support PPTP or L2TP connections inside android, so I switched to using openconnect (ocserv).
Is there any VpnService or API to connect to ocserv using Android?
I tried the ...
- 2,889
3
votes
0
answers
1k
views
On OpenConnect VPN, Docker containers have DNS but host machine does not
When I connect to a VPN using open connect, the docker containers that run afterwards have the ability to use DNS but the host machine itself does not.
If I look at the contents of /etc/resolv.conf ...
- 31
0
votes
1
answer
430
views
How would you configure a derivation or overlay for openconnect with vpn-slice with nixpkgs (non-daemon install, macOS Catalina)?
I’ve recently started using the nix package manager as a single user install (non-daemon).
I’m wondering how to configure openconnect and preferably with vpn-slice, a vpnc-script replacement for easy ...
- 237
0
votes
2
answers
1k
views
How to create own Open ID connect authorization server
I created an application for achieving all OAUTH2 grant types such as (Password grant. Client Credentials and Authorization type grant flow). But, now i want to switch authorization type grant flow ...
1
vote
2
answers
878
views
How would you install openconnect via nix on macOS latest?
I’m new to nix and would like to be able to install openconnect with it.
Darwin seems to be unsupported at this time via nix, though it can be installed with either brew or macports.
I’ve tried ...
- 237
-3
votes
1
answer
581
views
How to enable Web API to accept requests from multiple ClientIDs using Owin/Azure AD/OAuthV2
I want to build a Web API with following features:
Support OAuthv2 authentication
Can be accessed by multiple clients
Can restrict which client has access to which API method (like some XML file ...
- 454
1
vote
1
answer
2k
views
OpenConnect "must be running as root" in Gitlab CI/CD
I'm trying to get my Continuous Delivery working and subsequently uploading binaries to a company server, which is only accessible through VPN connection.
The problem is, every single time I try it, ...
- 3,007
0
votes
2
answers
1k
views
Redirect stdin for a few lines, then back to keyboard input
I have a bash script that invokes openconnect, which then turns around and reads 4 lines from stdin. These are (in order): group, password, authentication type, and one-time passcode.
I can ...
5
votes
2
answers
8k
views
Can you explain the RP->OP part in openid connect flow?
I don't understand the 1 part.
For example, I have a website asdf.com and use google OP, so I have a login with google button with a link(something like https://account.google.com/XXX?return_url=asdf....
- 8,680