Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.
I understand that you are using Azure P2S VPN with certificate authentication and IKEV2-OpenVPN Protocols.
The remote machines are using Azure VPN Client from MS Store. (Windows).
- I suggested to check "Run Diagnostics" and share the output from the right window on what's the error.
- However, you informed the imported xml configuration could not be saved to begin with and you were using Native windows client.
- Then I suggested, in the VPN Client, can you select the Certificate information as "DigiCert Global Root CA" and give it a try?
- Please uninstall the VPN Client App and reinstall it from MS Store
- To make sure we have the latest version.
- In case that does not help, download it directly from https://aka.ms/azvpnclientdownload
- If the issue persists, can you please repeat the steps from a different windows machine (to make sure this is not a OS issue)
- You informed this was working from an Azure VM and a different server - indicating there is something in the OS blocking the profile addition.
- Then you checked the difference between the devices and found that the rasman service was disabled.
- It's why we could not save the configuration in the Azure VPN client. I started the rasman service.
- Post this, importing the configuration downloaded from Azure for the VPN connected successfully.
Thanks,
Kapil
Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.