Since version 14 (and now 18.04), when connecting to my job cisco VPN (with openConnect), I always struggle to make the work’s okta domains working correctly.
Wen wire’s connected from my job, everything is working just fine. However, when connected from my home (with wifi), it is a nigthmare.
First I had issues with local domains like gitlab but this was resolved by adding the local domain to the “Additional search domains” of the vpn connection configuration. At first, I though it would also solve my problem with the mywork.okta_com but it did not.
When I’m from home and I connect to the vpn, I try to reach mywork.okta_com but it do not work. I have an ERR_EMPTY_RESPONSE. This is a nightmare since okta is the SSO for several applications used at the job.
The workaround I found that is working, is that before connecting to the vpn, I actually go to mywork.okta_com do the whole login process (with push notification), then connect to the vpn and just then I can now access mywork.okta_com and also my application depending on okta authentication. Note that I also did some DNS flush on ubuntu nad chromiun.
I think this is really more an ubuntu issue which is why I also ask for help on askubuntu (see https://askubuntu.com/questions/1092578/issue-with-the-my-work-okta-domain-mywork-okta-com-and-openconnect-vpn_. However, maybe you already know the issue and have a fix for me.
The problem occurs with Chromiun and firefox
Cromiun version: Version 70.0.3538.77 (Official Build) snap (64-bit)
Firefox: 63.0 (64-bit)
Ubuntu version: Description: Ubuntu 18.04.1 LTS Release: 18.04 Codename: bionic
Thanks for you help