Manually setup Azure Point-to-Site (P2S) VPN on client computer

作者: lesca 分类: Azure,Tutorials 发布时间: 2017-06-19 15:51


Azure point to site VPN uses SSTP (Secure Socket Tunneling Protocol) to establish VPN connection. The default port is on 443.
So the prerequisite is that you have finished setup a P2S VPN on Azure:
Configure a Point-to-Site connection to a VNet using the Azure portal

Today, I am going to show you how to manually setup a client using VPN client from Azure so that you can do more specific settings, like IPv4 settings for your test.

Note: This is not an offical solution, you can use it just for test purpose.


We create a VPN connection and use the default settings.
After that, go to its properties and check the “General” tab. Make sure the address is FQDN of the Azure Network Gateway you created.

Go to “Security” tab, choose “Microsoft: Smart Card or other certificate” option. And click “Properties”.

On the “Smart Card or other Certificate Properties” tab, choose “Use a certificate on this computer”. Uncheck “Verify the server’s identity by validating the certificate” if you are using a self-signed certificate.

At the first attempt to connect, you are asked to choose your client certificate.

Trouble shooting

Error message:

The certificate's CN name does not match the passed value.


Use FQDN of your Azure network gateway.
My steps:

  1. Download and install VPN client configuation file from Azure
  2. View \AppData\Roaming\Microsoft\Network\Connections\Pbk and find the FQDN


本文出自 Lesca 技术宅,转载时请注明出处及相应链接。