TransWikia.com

Connection via Cloud Identity-Aware Proxy Failed

Server Fault Asked by user594268 on December 21, 2020

We have an instance running in US-central-1 zone which started getting an error as follows:

Connection via Cloud Identity-Aware Proxy Failed
Code: 4003
Reason: failed to connect to backend
You may be able to connect without using the Cloud Identity-Aware Proxy.

I’m unable to connect without using the Cloud Identity-Aware Proxy either, where it shows the following message:

We are unable to connect to the VM on port 22.

The website running on this instance is a live ecommerce platform without another running backup instance. Please resolve this issue as soon as possible.

PS: We haven’t made any changes to the VM after it was found working. And we are not touching any quota limits.

One Answer

If the allowed Ingress for tcp:22, included your source/s IP then there is no issue with the GCP firewall and my suggestion is to do the following steps and established a serial connection to your VM and after that will be able to check the SSH service is up and in the listening mode or even check for any firewall blocking inside your VM.

  1. Go to the VM instances page in Google Cloud Platform console.
  2. Click on the instance for which you want to add a startup script.
  3. Click the Edit button at the top of the page.
  4. Click on 'Enable connecting to serial ports'
  5. Under Custom metadata, click Add item.
  6. Set 'Key' to 'startup-script' and set 'Value' to this script:

#! /bin/bash

useradd -G sudo USERNAME

echo 'USERNAME:PASSWORD' | chpasswd

NOTE: Change the value of USERNAME & PASSWORD to the username and password of your choice.

  1. Click Save and then click RESET on the top of the page. You might need to wait for some time for the instance to reboot.
  2. Click on 'Connect to serial port' in the page.
  3. In the new window, you might need to wait a bit and press on Enter of your keyboard once; then, you should see the login prompt.
  4. Login using the USERNAME and PASSWORD you provided.

Answered by Ali Reza Izadi on December 21, 2020

Add your own answers!

Ask a Question

Get help from others!

© 2024 TransWikia.com. All rights reserved. Sites we Love: PCI Database, UKBizDB, Menu Kuliner, Sharing RPP