Integrate with OpenVPN by provisioning VPN users
DuploCloud integrates natively with OpenVPN by provisioning VPN users that you add to the Duplocloud Portal. OpenVPN setup is a two-step process.
Accept OpenVPN Free tier (Bring Your Own License) in the GCP marketplace:
- 1.Log into your GCP account. In the console, navigate to: https://console.cloud.google.com/marketplace?_ga=2.26702909.1494282976.1678740607-1491144562.1675196305&pli=1.
- 2.Accept the agreement.
- 1.In the DuploCloud Portal, navigate to Administrator --> System Settings.
- 2.Click the VPN tab.
- 3.Click Provision VPN.
After the OpenVPN is provisioned, it is ready to use. Behind the scenes, DuploCloud launches a cloud formation script to provision the OpenVPN.
VPN tab in the System Settings page.
You can find the OpenVPN admin password in the cloud formation stack in your GCP console.
Provision a VPN while creating a user:
- 1.In the DuploCloud Portal, navigate to Administrator -> Users.
- 2.Click Add. The Create User pane displays.
- 3.Enter a valid email address in the Username field.
- 4.In the Roles field, select the appropriate role for the User.
- 5.Select Provision VPN.
- 6.Click Submit.
Create User pane
For information about removing VPN access for a user, see Deleting a VPN user. To delete VPN access, you must have administrator privileges.
By default, users connected to a VPN can SSH or RDP into virtual machines (VMs). Users can also connect to internal load balancers and endpoints of the applications. However, to connect to other services, such as databases and elastic cache, you must open the port to the VPN:
- 1.In the DuploCloud Portal, navigate to Administrator --> Tenant.
- 2.Select the Tenant in the Name column.
- 3.Click the Security tab.
- 4.Click Add. The Add Tenant Security pane displays.
- 5.In the Source Type field, select Ip Address.
- 6.In the IP CIDR field, enter the name of your VPN.
- 7.Click Add.
Add Tenant Security pane