![]() Preconfigure Amazon WS instances with required Active Directory, EC2 and workspace.ĭownload and install the Okta RADIUS agent on Instance B.įor throughput, availability and other considerations, see Okta RADIUS Server Agent Deployment Best Practices.Ĭreate inbound rules to allow the RADIUS agent to communicate with an AWS Directory Service instance. When an end user that's enrolled in Okta with DUO MFA attempts to access Amazon Workspaces configured with RADIUS, they must provide the six digit MFA passcode displayed on the DUO mobile app in addition to their primary password. If that private IP changes the AWS Directory MFA configuration must be updated to reflect the new private IP.ĭUO MFA with Push/SMS/Call isn't supported for Amazon Workspaces with RADIUS. The AWS Directory service requires the private IP address of Instance B to delegate the MFA challenge over RADIUS. ![]() Directory ID is used to determine the name of the Security Group. You must have the Directory ID of the AWS Directory Service. The AWS Directory Service requires the private IP address of Instance B to delegate the MFA challenge over RADIUS.ĪWS Directory Service instance, configured and pointing to Instance A, running Active Directory. Instance B: represents the Windows 2012r2 host on which to install the Okta RADIUS agent.Instance A: represents the Amazon Directory Service virtual machine instance.In addition, you must configure Amazon Web Services as: In addition, you must configure Amazon Web Services as:Īmazon Web Services instances, configured as: RADIUS traffic between the gateway (client) and the RADIUS agent (server). (Default, you can change this when you install and configure the RADIUS app) This procedure shows how to create a serverless application with the Toolkit for VS Codeīy using AWS SAM.Meet the following network connectivity requirements before you install the Okta RADIUS agent: SourceĬonfiguration and authentication traffic. Creating a new serverless application (local) Set up your credentials, see the AWS IAM credentials in this User Guide. Serverless applications, see the Managing resource access and permissions in the AWS Serverless Application Model Developer Guide. Have appropriate read/write access to the following services: AWS CloudFormation, IAM, Lambda, Amazon API Gateway,Īmazon Simple Storage Service (Amazon S3), and Amazon Elastic Container Registry (Amazon ECR).įor additional information about setting up authentication required to deploy and run ![]() In the Toolkit for VS Code you must have a credentials profile that contains theĪWS Identity and Access Management (IAM) permissions necessary to deploy and run serverless applications. For additional information about CodeLens, see the CodeLens section in the VS Code documentation This is required for the CodeLens feature of AWS SAM template files are accessible. Language support extension from the VS Code marketplace. For additional information on how to configure your toolchain from the AWS Toolkit for Visual Studio Code see the configure your toolchain topic in this User Guide. Install your language SDK and configure your toolchain. Settings topic in the AWS Command Line Interface User Guide. See the Configuration and credential file For more information on your config file, Installing the AWS SAM CLI topic in this AWS Serverless Application Model User Guide.įrom your AWS config file, identify your default AWS Region. For additional information and instructions on how to install the AWS SAM CLI, see the Install the AWS SAM command line interface (CLI).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |