What options are there for managing Azure VPN Client Certificates?
I am planning to use Azure's Point-to-Site (P2S) solution for remotely connecting users to our Azure network via OpenVPN.
As I have users logging in from both Windows and Linux, it seems that I will need to use Client Credential style authentication.
The documentation shows how to make a client certificate using powershell or linux commands. (I've linked the powershell, as the linux commands didn't work for me)
My question is: What options are out there for managing (creating and storing) the client certificates that I need to generate for all my users?
I thought the Azure Key Vault might be useful but it only really deals with SSL certs. I don't think managing this list in a Spreadsheet is a very secure solution.
Ideally the solution would:
- Be free/open source
- Be part of Azure's tools (or if not, maybe be something lightweight like an ubuntu server app)
- Simplify the generation of the client certs.
- Allow me to name and view all past created certificates under a given root certificate
Hello @Jeremy , apologies for the delayed response here. I have reached out to the team internally regarding this issue and I will make an update here as soon as I get a response. Thank you!
I guess you haven't heard from the team yet? It's looking like I'm unfortunately going to have to go the old Spreadsheet route.
Hello @Jeremy , apologies for the delayed response here. I am still awaiting a response from the team. I have followed up with them. I will make an update here as soon as I get a response. Thank you for your patience throughout this process.
Hello @Jeremy , Apologies for the delayed response here. I got a response back from the team, unfortunately the team does not have any recommendations for this scenario, however you can use Microsoft Certificate Service if you are using Active Directory.
It will be helpful if you could create a feedback item for this request on our feedback portal. Thank you!
Sign in to comment