Help Needed: Client VPN with AWS Managed AD and On-Prem AD Trust Issue

Hey everyone,

I’m facing an issue with my VPN setup and could really use some help or insights.

Here’s the situation:

1. Setup: I configured a client VPN endpoint with Active Directory (AD) authentication using an AWS-managed AD.
2. Trust Configuration: I then added a ‘One-Way: Outgoing’ trust to an on-premises AD.
3. Validation: The trust validation was successful, and I can RDP from on-prem to AWS using on-prem AD users.
4. Issue: Despite the above success, I am unable to use the VPN with on-prem AD users.

I’m starting to think the issue might be related to the one-way trust configuration, but I’m not entirely sure. Has anyone encountered similar issues or have any suggestions on what could be going wrong? Any help or guidance would be greatly appreciated!

Thanks in advance!

Hey there - currently working on the same implementation and I found your post.
Did you have any progress / found a final or stable solution?

I ended up on this blogpost but haven’t tested anything, it seems though as the problem might be related (like you were thinking) to the fact that AWS Client VPN needs a two-way trust.