Faʻafefea ona Faʻatulagaina le Faʻamaoniga VPN Hailbytes

faʻatomuaga

I le taimi nei ua e maua le HailBytes VPN setup ma configured, e mafai ona e amata suʻesuʻeina nisi o mea saogalemu e ofoina atu e HailBytes. E mafai ona e siakiina la matou blog mo faʻatonuga faʻatulagaina ma foliga mo le VPN. I totonu o lenei tusiga, o le a tatou ufiufi auala faʻamaonia e lagolagoina e HailBytes VPN ma pe faʻafefea ona faʻaopoopo se auala faʻamaonia.

lagona

O le HailBytes VPN e ofoina atu le tele o auala faʻamaonia e ese mai i faʻamaoniga masani faʻapitonuʻu. Ina ia fa'aitiitia fa'alavelave fa'aletonu, matou te fautuaina le tapeina o fa'amaoniga fa'apitonu'u. Nai lo lena, matou te fautuaina le faʻamaoniga faʻapitoa (MFA), OpenID Connect, poʻo le SAML 2.0.

E fa'aopoopoina e le MFA se fa'aopoopoga fa'aopoopo o le puipuiga i luga o le fa'amaoniga fa'apitonu'u. O le HailBytes VPN e aofia ai faʻasalalauga faʻapitonuʻu ma lagolago mo le MFA i fafo mo le tele o faʻamatalaga lauiloa e pei o Okta, Azure AD, ma Onelogin.

OpenID Feso'ota'i ose fa'ailoga fa'asinomaga na fausia ile OAuth 2.0 protocol. E maua ai se auala saogalemu ma fa'ata'atia e fa'amaonia ma maua mai ai fa'amatalaga a le tagata fa'aoga mai se tagata e tu'uina atu fa'amatalaga e aunoa ma le saini fa'atele.

SAML 2.0 ose fa'avae matala fa'avae XML mo le fesuia'i fa'amaoni ma fa'amatalaga fa'atagaina i le va o itu. E mafai ai e tagata fa'aoga ona fa'amaonia fa'atasi ma se tagata e tu'uina atu fa'amatalaga e aunoa ma le toe fa'amaonia e maua ai talosaga eseese.

OpenID Fesootai ma Azure Seti

I totonu o lenei vaega, o le a matou faʻapuupuu le auala e tuʻufaʻatasia ai lau tuʻuina atu faʻamatalaga e faʻaaoga ai le OIDC Multi-Factor Authentication. O lenei taʻiala e faʻatatau i le faʻaaogaina o le Azure Active Directory. E ono iai ni fa'atonuga e le masani ai ma isi fa'afitauli.

Matou te fautuaina oe e fa'aaoga se tasi o kamupani ua uma ona lagolagoina ma fa'ata'ita'iina: Azure Active Directory, Okta, Onelogin, Keycloak, Auth0, ma Google Workspace.

Afai e te le o fa'aogaina se OIDC o lo'o fautuaina, e mana'omia fa'atonuga nei.

a) discovery_document_uri: O le OpenID Connect provider configuration URI lea e toe faafoi mai ai se pepa JSON na faʻaaogaina e fausia ai talosaga mulimuli ane i lenei kamupani OIDC. O nisi o au'aunaga e ta'ua lenei mea o le "URL lauiloa".

b) client_id: Le ID o tagata o tausia o le talosaga.

c) client_secret: Le mealilo a le kalani o le talosaga.

d) redirect_uri: Fa'atonu le kamupani OIDC po'o fea e toe fa'afo'i pe a uma le fa'amaoni. E tatau ona avea lea ma lau Firezone EXTERNAL_URL + /auth/oidc/ /callback/, fa'ata'ita'iga https://firezone.example.com/auth/oidc/google/callback/.

e) response_type: Seti i le code.

f) va'aiga: va'aiga OIDC e maua mai lau 'au'aunaga OIDC. I se tulaga maualalo, e manaʻomia e le Firezone le avanoa tatala ma imeli.

g) fa'ailoga: Le fa'amaufa'ailoga fa'amaufa'ailoga o lo'o fa'aalia i luga o le itulau e saini ai le faitoto'a o le Firezone.

Su'e ile Azure Active Directory itulau ile Azure portal. Filifili le So'oga resitalaina o le App i lalo o le Manage menu, kiliki New Registration, ma resitala pe a uma ona ulufale i mea nei:

a) Igoa: Firezone

e) Ituaiga teugatupe lagolago: (Na'o le Fa'atonu Fa'atonu – Tagata nofo to'atasi)

c) Toe fa'asino le URI: E tatau ona avea lea ma lau Firezone EXTERNAL_URL + /auth/oidc/ /callback/, fa'ata'ita'iga https://firezone.example.com/auth/oidc/azure/callback/.

A uma ona lesitala, tatala le faʻamatalaga auiliiliga o le talosaga ma kopi le ID Talosaga (client). Ole tau ole client_id lea.
Tatala le lisi autu e toe aumai ai le OpenID Connect metadata pepa. Ole tau ole discovery_document_uri.

Filifili le Tusi Faamaonia & mealilo sootaga i lalo o le Pulea lisi ma fatuina se mealilo fou a tagata o tausia. Kopi le mealilo a le kalani. Ole tau ole client_secret lea.

Filifili le API fa'atagaga so'otaga i lalo o le Manage menu, kiliki Fa'aopoopo se fa'atagaga, ma filifili le Microsoft Graph. Fa'aopoopo imeli, openid, offline_access ma fa'amatalaga i fa'atagaga mana'omia.

Su'e i le /seti/security page i le admin portal, kiliki "Add OpenID Connect Provider" ma fa'atumu fa'amatalaga na e mauaina i la'asaga i luga.

Fa'amalo pe fa'amalo le Auto create users option e otometi ai ona fau se tagata fa'atauva'a pe a saini i totonu e ala i lenei masini fa'amaonia.

Fa'afetai! E tatau ona e vaʻai i le A Sign In with Azure button i lau saini i le itulau.

iʻuga

O le HailBytes VPN e ofoina atu le tele o auala faʻamaonia, e aofia ai le tele-factor authentication, OpenID Connect, ma le SAML 2.0. E ala i le tuʻufaʻatasia o OpenID Connect ma le Azure Active Directory e pei ona faʻaalia i le tusiga, e mafai e lau aufaigaluega ona faigofie ma saogalemu ona maua au punaoa i luga o le Cloud poʻo le AWS.

LokaBit Fa'ailoa Fa'asinomaga - Fa'atulafono po'o Troll?

LokaBit Ta'ita'i Fa'ailoa Fa'ailoa - Fa'atulafono po'o Troll?

Ia 9, 2024 E leai se faamatalaga

LokaBit Ta'ita'i Fa'ailoa Fa'ailoa - Fa'atulafono po'o Troll? Ua lauiloa lautele o se tasi o vaega sili ona lauiloa ransomware i le lalolagi, Lockbit muamua na aliali mai i totonu.

Faitau atili »

Auala e Aveese Metadata mai se faila

Aperila 27, 2024 E leai se faamatalaga

Faʻafefea ona Aveese Metadata mai se Faʻamatalaga Faʻamatalaga Metadata, e masani ona faʻamatalaina o "faʻamatalaga e uiga i faʻamaumauga," o faʻamatalaga e maua ai faʻamatalaga e uiga i se faila patino. E

Faitau atili »

Fa'asao le Tusitala Initaneti ma le TOR

Aperila 27, 2024 E leai se faamatalaga

Fa'atomuaga Fa'ainitaneti ma le TOR Fa'atomuaga I se lalolagi o lo'o fa'atupuina fa'atulafonoina le avanoa i fa'amatalaga, o meafaigaluega e pei o le feso'otaiga a Tor ua avea ma mea taua mo

Faitau atili »

Faʻafefea ona Faʻatulagaina le Faʻamaoniga VPN Hailbytes

faʻatomuaga

lagona

OpenID Fesootai ma Azure Seti

iʻuga

LokaBit Ta'ita'i Fa'ailoa Fa'ailoa - Fa'atulafono po'o Troll?

Auala e Aveese Metadata mai se faila

Fa'asao le Tusitala Initaneti ma le TOR

auaunaga

La matou Kamupani

La Tatou Tuatusi

fofo o Faafitauli

Saogalemu FAQ

Social Ala o Faasalalauga