Azure VPN P2S VPN Client Configuration is not exporting root certificate

Reuben Fischman 0 Reputation points

I have followed the how-to guides to create a Point-to-Site configuration for an Azure VPN Gateway.

Tunnel Type: OpenVPN (SSL)

Authentication Type: Azure Certificate

I've pasted in my root certificate and then saved the configuration. When I click "Download VPN Client" I get a ZIp file that contains multiple XML files.

I then use the Azure VPN Client for "OpenVPN: Azure Client Steps" as described in this article:

When I import the azurevpnconfig.xml into the client, instead of having the Root certificate I imported selected, it shows a root certificate of "DigiCert Global Root G2"

When I look at the other XMl files in the ZIP file, the generic XML file has the DigiCert Global Root certificate included in it, INSTEAD of my imported root certificate.

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
972 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Jackson Martins 7,381 Reputation points

    hi @Reuben

    It seems that you are experiencing an issue with the Azure VPN Client, where it is not correctly importing your root certificate., I wrote an article showing how to import certificates and download the clients

    Translate to english

    If the Azure VPN Client still shows the DigiCert Global Root G2 certificate, you can try manually importing your root certificate into the client:

    • Open the Azure VPN Client.
    • Go to "Settings" > "Certificates".
    • Click "Import" and then browse to the location where your root certificate file is saved. Select your root certificate file and click "Open".
    • Your root certificate should now appear in the list of certificates.

    Re-import the azurevpnconfig.xml

    Get in touch if you need more help with this issue.

    --please don't forget to "[Accept the answer]" if the reply is helpful--