Me pehea te Whakaritea Hailbytes VPN Motuhēhēnga

Kupu Whakataki

Inaianei kei a koe te tatūnga HailBytes VPN me te whirihora, ka taea e koe te tiimata ki te tirotiro i etahi o nga ahuatanga haumarutanga ka tukuna e HailBytes. Ka taea e koe te tirotiro i ta maatau blog mo nga tohutohu tatūnga me nga ahuatanga mo te VPN. I roto i tenei tuhinga, ka hipokina e matou nga tikanga motuhēhēnga e tautokohia ana e HailBytes VPN me pehea te taapiri i tetahi tikanga motuhēhēnga.

Overview

He maha nga tikanga motuhēhēnga a HailBytes VPN i tua atu i te motuhēhēnga o te rohe. Hei whakaiti i nga raruraru haumarutanga, ka tūtohu kia whakakorehia nga motuhēhēnga rohe. Engari, ka tūtohu matou ki te motuhēhēnga-maha-tau (MFA), OpenID Connect, SAML 2.0 ranei.

Ka taapirihia e te MFA tetahi paparanga haumarutanga ki runga ake o te motuhēhēnga o te rohe. Kei roto i te HailBytes VPN he putanga hanga-a-rohe me te tautoko mo te MFA o waho mo te maha o nga kaiwhakarato tuakiri rongonui penei i a Okta, Azure AD, me Onelogin.

Ko te OpenID Connect he paparanga tuakiri i hangaia ki te kawa OAuth 2.0. Ka whakaratohia he huarahi haumaru me te paerewa hei whakamotuhēhē me te whiwhi korero kaiwhakamahi mai i tetahi kaiwhakarato tuakiri me te kore e uru ki nga wa maha.

Ko te SAML 2.0 he paerewa tuwhera a XML mo te whakawhiti korero motuhēhēnga me te whakamanatanga i waenga i nga roopu. Ka taea e nga kaiwhakamahi te whakamotuhēhē kotahi me te kaiwhakarato tuakiri me te kore e whakamotuhēhē anō kia uru atu ki ngā tono rerekē.

OpenID Hono ki te Whakaritea Azure

I roto i tenei waahanga, ka korero poto matou me pehea te whakauru i to kaiwhakarato tuakiri ma te whakamahi i te Motuhēhēnga Taumaha OIDC. Kua whakaritea tenei aratohu ki te whakamahi i te Azure Active Directory. He rereke nga whirihoranga me etahi atu take o nga kaiwhakarato tuakiri rereke.

Ka tūtohu matou kia whakamahia e koe tetahi o nga kaiwhakarato kua tino tautokohia, kua whakamatauria: Azure Active Directory, Okta, Onelogin, Keycloak, Auth0, me Google Workspace.

Mena kaore koe i te whakamahi i tetahi kaiwhakarato OIDC kua taunakitia, ka hiahiatia nga whirihoranga e whai ake nei.

a) discovery_document_uri: Ko te URI whirihoranga kaiwhakarato OpenID Connect e whakahoki ana i te tuhinga JSON i whakamahia hei hanga tono a muri ake nei ki tenei kaiwhakarato OIDC. Ko etahi o nga kaiwhakarato e kii ana ko te "URL rongonui".

b) client_id: Ko te ID kiritaki o te tono.

c) client_secret: Ko te mea ngaro a te kiritaki o te tono.

d) redirect_uri: Ka tohutohu i te kaiwhakarato OIDC ki hea ka anga atu i muri i te motuhēhēnga. Ko to Firezone EXTERNAL_URL + /auth/oidc/ /callback/, hei tauira https://firezone.example.com/auth/oidc/google/callback/.

e) momo_whakautu: Tautuhi ki te waehere.

f) awhi: Ko nga waahanga OIDC hei tiki mai i to kaiwhakarato OIDC. I te iti rawa, ka hiahia a Firezone ki te tuwhera me nga waahi imeera.

g) tapanga: Ko te kuputuhi tapanga paatene e whakaatuhia ana i te wharangi whakaurunga tomokanga Firezone.

Whakatere ki te wharangi Azure Active Directory i te tomokanga Azure. Tīpakohia te hononga Rehitatanga Taupānga i raro i te tahua Whakahaere, paatohia te Rehitatanga Hou, ka rehita i muri i te whakaurunga e whai ake nei:

a) Ingoa: Firezone

b) Momo putea tautoko: (Taunoa Whaiaronga anake – Kairëti kotahi)

c) Tukuna URI: Ko to Firezone EXTERNAL_URL + /auth/oidc/ /callback/, hei tauira https://firezone.example.com/auth/oidc/azure/callback/.

I muri i te rehitatanga, whakatuwherahia te tirohanga taipitopito o te tono me te kape i te Taupānga (kiritaki) ID. Koinei te uara client_id.
Whakatuwherahia te tahua tohu mutunga hei tiki i te tuhinga metadata OpenID Connect. Koinei te uara_tuhinga_uri.

Tīpakohia te hononga Tiwhikete me nga mea ngaro i raro i te tahua Whakahaere me te hanga i tetahi mea ngaro kiritaki hou. Tāruatia te mea ngaro a te kiritaki. Koinei te uara client_secret.

Tīpakohia te hononga whakaaetanga API i raro i te tahua Whakahaere, pawhiria te Tāpiri whakaaetanga, ka kowhiria te Microsoft Graph. Taapirihia te imeera, te whakatuwhera, te uru tuimotu me te kōtaha ki nga whakaaetanga e hiahiatia ana.

Whakatere ki te wharangi /tautuhinga/haumarutanga i te tomokanga whakahaere, pawhiria te "Taapiri OpenID Connect Provider" ka whakauru i nga korero i whiwhi koe i nga hikoinga o runga.

Whakahohe, monohia ranei te kōwhiringa Kaiwhakamahi Waihanga Aunoa ki te hanga aunoa i tetahi kaiwhakamahi karekau i te wa e haina ana ma tenei tikanga motuhēhēnga.

Kia ora! Me kite koe i te paatene Waitohu me te Azure i runga i to hainatanga whaarangi.

Opaniraa

Ko te HailBytes VPN e tuku ana i nga momo tikanga motuhēhēnga, tae atu ki te motuhēhēnga-maha, OpenID Connect, me te SAML 2.0. Ma te whakauru i te OpenID Connect me te Azure Active Directory e whakaatuhia ana i roto i te tuhinga, ka taea e to kaimahi te uru ki o rauemi i runga i te Kapua, i te AWS ranei.

Kua Whakaatuhia te Tuakiri Kaiarahi o LockBit – Tika, Troll ranei?

Kia 9, 2024 No Comments

Kua Whakaatuhia te Tuakiri Kaiarahi o LockBit – Tika, Troll ranei? E mohiotia ana ko tetahi o nga roopu ransomware tino nui o te ao, i puta tuatahi a Lockbit

Pānuitia atu »

Me pehea te tango Metadata mai i te konae

April 27, 2024 No Comments

Me pehea te Tango i te Raraunga Meta mai i te Kupu Whakataki Kōnae Ko te metadata, e kiia ana he "raraunga mo nga raraunga," he korero e whakaatu ana i nga korero mo tetahi konae. Ko

Pānuitia atu »

Te karo i te Kaihanga Ipurangi me te TOR

April 27, 2024 No Comments

Te karo i te Whakatairanga Ipurangi me te TOR Kupu Whakataki I roto i te ao kei te kaha te whakahaere i te uru ki nga korero, he mea nui nga taputapu penei i te whatunga Tor mo

Pānuitia atu »

Me pehea te Whakaritea Hailbytes VPN Motuhēhēnga

Kupu Whakataki

Overview

OpenID Hono ki te Whakaritea Azure

Opaniraa

Kua Whakaatuhia te Tuakiri Kaiarahi o LockBit – Tika, Troll ranei?

Me pehea te tango Metadata mai i te konae

Te karo i te Kaihanga Ipurangi me te TOR

ratonga

To tatou Kamupene

To tatou Wāhitau

Solutions

FAQ Haumarutanga

Social Media