red888
Reputation: 31652
How do you troubleshoot IAP access issues with a GCE load balancer?
I have IAP configured for my GCE LB with an API Gateway backend. I'm getting access denied errors no matter what oauth/iap/audience etc config I'm using.
But my question is not how to fix my specific problem. My question is how I even begin to troubleshoot IAP access issues. Where is this logged? Where do I go to see exactly why IAP rejected a request?
I have LB and backend logging enabled but all I get from that are web access logs.
Logs of type protoPayload.serviceName="iap.googleapis.com" show me nothing with respect to access denied requests.
How do I see why IAP is rejecting users on this LB?
Upvotes: 0
Views: 75
Answers (0)
Related Questions
- Connect external HTTPS load balancer with NGINX Ingress exposed as zonal NEG
- How do you pass Authentication from 1 Service to another using GCP IAP?
- Cloud Run with IAP behind urlmap, redirects to root
- Compute Engine and IAP without load balancer
- How to protect Google Cloud Functions with Identity-Aware-Proxy
- How to use OAuth client on GCP project #1 though another project #2 what is connected with firebase?
- Query based parameter routing Google load balancer - IAP
- Programmatic access from a service account to a Google IAP protected resource denied with invalid signature error
- Enable IAP on Ingress