Issue: Enable or describe how to use the Entraid provider behind a proxy #446
Labels
documentation
Improvements or additions to documentation
enhancement
New feature or request
high
High importance issue
Is there an existing issue for this?
Describe the issue
When installing authd and the entra snap on a computer that does not have direct internet access, there is no description on how to add a proxy for reaching microsoft/entra.
Produces the following error in the entraid log:
"could not create broker with provided issuer and client ID"
Where does the issue happens
Steps to reproduce it
1: Install Ubuntu in an isolated network with only access to internet through (http) proxy server
2: export http_proxy and https_proxy values to allow adding of PPA
3: Add PPA and install authd
4: Set proxy values for snap to allow snap installation through proxy
5: Install EntraID snap
6: Configure according to installation guide / wiki
7: See results in "journalctl -u snap.authd-msentraid.authd-msentraid.service"
System information and logs
Environment
snap info authd-msentraid
/usr/libexec/authd version
apt policy gnome-shell
/etc/os-release
)/etc/os-release
):Log files
Please redact/remove sensitive information:
Authd entries:
MS Entra ID broker entries:
Application settings
Please redact/remove sensitive information:
Broker configuration:
Broker authd configuration:
Relevant information
Usecase for this need is that external users will authenticate with EntraID OIDC on reverse proxy and a web-based RDP gateway (Apache Guacamole), and we want to use the same authentication on the next hop (that will be using xrdp to connect to the ubuntu terminal server which is on an internal network without direct internet access)
Double check your logs
The text was updated successfully, but these errors were encountered: