In P2S Azure VPN, Can I use same client child certificate for multiple PC at the same time?

Talha 216 Reputation points
2021-09-09T18:20:49.723+00:00

HI
we have a configured Azure P2S VPN which is using root and client certificate. I want to know if I can use same certificate for multiple client PC at the same time or do I have to create root and client certificate for each individual PC?
Here is a link that I am following to create certificates : https://learn.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-howto-point-to-site-resource-manager-portal#generatecert

Thanks

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,578 questions
0 comments No comments
{count} votes

Accepted answer
  1. ChaitanyaNaykodi-MSFT 26,546 Reputation points Microsoft Employee
    2021-09-09T23:29:09.597+00:00

    Hello @Talha , Thank you for reaching out. Yes you can definitely use the same client certificate (generated from one root certificate) for multiple client machines or you can create unique client certificates (generated from one root certificate) for each client computer. The advantage of using unique certificate for each machine is that when you want to revoke any client certificate you wont have to regenerate it in each any every machine.
    Just to add if you remove any root certificate the clients that have a certificate generated from that root won't be able to authenticate. You can add up to 20 trusted root certificate .cer files to Azure.
    You can also go through this FAQ doc for any additional details.
    This information is mentioned in a different sections of the document you shared above, please let me know if you have if you have any additional concerns. I will be glad to continue with our discussion.

    1 person found this answer helpful.
    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.