How to fix the error EOF occurred in violation of protocol (_ssl.c:1129)

Question

Hi,

Azure Login’ is failing from internal jump server with below error. I’m getting this error only when we are forcing the traffic through Azure Firewall.

Error:

EOF occurred in violation of protocol (_ssl.c:1129)

Answer

Hello @Narendra Sharma, Rahul ,

Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.

I understand that you are getting "EOF occurred in violation of protocol (_ssl.c:1129)" error when trying to use Azure CLI command Azure Login on an internal jump server when all the traffic is forced through Azure Firewall.

Are you restricting any outbound traffic on the Azure Firewall?

Please refer the below reported issues for more information:

https://github.com/Azure/azure-cli/issues/19456

https://learn.microsoft.com/en-us/answers/questions/808229/when-trying-to-login-using-az-login-from-vm-throws

Also refer the below docs which lists the proxy requirements or endpoints which needs to be whitelisted for Azure portal and Azure CLI access:

Allow the Azure portal URLs on your firewall or proxy server: https://learn.microsoft.com/en-us/azure/azure-portal/azure-portal-safelist-urls?tabs=public-cloud

Azure CLI endpoints for proxy bypass: https://learn.microsoft.com/en-us/cli/azure/azure-cli-endpoints?tabs=azure-cloud

You also need to make sure that both TCP ports for HTTP (80) and HTTPS (443) are allowed.

I've seen customers fixing this issue by enabling access to management.azure.com on ports 443 and 80 via the Azure Firewall.

Refer: https://github.com/starkfell/100DaysOfIaC/blob/master/articles/day.61.azure.cli.behind.an.azure.firewall.md

Kindly let us know if the above helps or you need further assistance on this issue.

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

How to fix the error EOF occurred in violation of protocol (_ssl.c:1129)

1 answer