AWS VPN Client - connection handler

Is there a way to block VPN users from connecting if they are using an old version of windows (win 7) or even better, not installing windows update frequently (3 months without security patch)?
I’ve been playing with lambda functions using python but can’t find the properties to make this work. event[‘platform’] and [‘platform-version’] return that’s its a windows OS but not much besides that.

Thank you!

I would say you’re limited by what openvpn can do since AWS VPN client is just their version of openvpn. So if openvpn can’t do it, there is a high chance the AWS vpn won’t.

You need to get your data from the client inventory. Do you have any system in place that gathers information about clients like rmm stuff?

I’ll check info on openvpn. I thought this would be a easy thing to implement but I can’t find it anywhere. there is a nice tutorial on blocking by country but nothing on OS version.

there is a nice tutorial on blocking by country but nothing on OS version.

That’s because it’s not relying on the client to do anything most likely. The country blocking is going to be determined by connecting IP address. That’s just pure basic networking at the point.

When the client connects, the is a json sent to lamdba with info about connection(ip included). there is also a field that shows win/mac/linux but not the version.

I’ll check info on openvpn to see if I can find something that can help me.

win/mac/linux but not the version

Are you sure that’s just not displaying the client type? Not the OS that’s connecting? That would be part of the client which would make sense why you aren’t getting OS version information.