Important
This repository is largely simply packaging other authors' work!
Alex Samorukov is the mastermind behind this implementation. He figured out how AWS patches the openvpn client and created the first implementations. Be sure to read his blog on for more details.
Botify Labs maintains the .patch files for more recent versions of OpenVPN than what are available originally
in Alex's repository.
Kaur Palang packaged the work of Alex Samorukov and Botify Labs into a Docker container format, making OpenVPN compatible with AWS VPN SAML while providing consistent deployment across environments.
This fork embeds the OpenVPN profile directly into the Docker image at build time instead of using runtime volume mounts, avoiding SELinux context conflicts while maintaining security isolation. Tested on Fedora Asahi Linux.
- Clone this repository
- Download your AWS VPN client profile into a directory
- Place your AWS VPN client profile (
cvpn-endpoint-*.ovpn) in the same directory as the Dockerfile, renaming it toprofile.ovpn - Run
docker compose up --build - Authenticate to the login link you can find in the log output of this container