Hi,
You should use different certificate for each user for individual environment and share then share the VPN exe and the cert to the end users.
Only the legitimate users of the respective environment can access the resources.
Regards,
Karthik Srinivas