I am trying to setup a point-to-site VPN connection and am hitting a roadblock at certificates. All of the documentation assumes you have Visual Studio and the Windows SDK and want to use
makecert. That's great if I'm the only one who needs to use the VPN but not great if we have multiple people. And I'm not a developer and don't have Visual Studio installed.
I would like to know how to use my existing Windows PKI infrastructure to generate client certs for the site-to-point VPN. The goal is that no special tools would be required to request a client cert, the user can just perform a normal cert request and pick an Azure specific template. I can control who can request the cert through template security.
I have already uploaded my root CA cert to Azure but have not been successful in creating a client certificate template that allows me to connect. Does anyone know what settings the template would need to satisfy the point-to-site requirements?
I would like to know how to use my existing Windows PKI infrastructure to generate client certs for the site-to-point VPN. The goal is that no special tools would be required to request a client cert, the user can just perform a normal cert request and pick an Azure specific template. I can control who can request the cert through template security.
I have already uploaded my root CA cert to Azure but have not been successful in creating a client certificate template that allows me to connect. Does anyone know what settings the template would need to satisfy the point-to-site requirements?