Generate certificate for VPN

Raul Guchinife 100

Hi, I have a Windows 2022 server configured as a Certification Authority.

I have to generate a certificate that is valid for user authentication for the VPN. In other words, once the user has logged in with the VPN client, they will only be able to access if they have this certificate. What kind of certificate should be issued and how?

Greetings

1 answer

Limitless Technology 43,951 Reputation points

2023-02-28T14:31:35.7733333+00:00

Hello

Thank you for your question and reaching out. I can understand you are having query\issues related to certificate for VPN.

For steps to generate a client certificate, see Generate and export certificates. https://learn.microsoft.com/en-us/azure/virtual-wan/certificates-point-to-site#clientcert

For steps to install a client certificate see Install client certificates. https://learn.microsoft.com/en-us/azure/virtual-wan/install-client-certificates

To view an installed client certificate, open Manage User Certificates. The client certificate is installed in Current User\Personal\Certificates.

Reference :

https://learn.microsoft.com/en-us/azure/vpn-gateway/point-to-site-vpn-client-cert-windows

https://learn.microsoft.com/en-us/windows/security/identity-protection/vpn/vpn-authentication

--If the reply is helpful, please Upvote and Accept as answer--
Please sign in to rate this answer.
Raul Guchinife 100 Reputation points

2023-03-02T08:01:57.1533333+00:00

Hello, thanks for the answer.

I have to create the certificate from the CA of the domain. The user or equipment that does not have this certificate will not be able to validate itself in the VPN. The type of certificate I have to create is "client" or "computer". How do I generate it to send to the user?

Thank you!
Sign in to comment