{"id":1695,"date":"2020-06-05T06:44:17","date_gmt":"2020-06-05T11:44:17","guid":{"rendered":"https:\/\/www.ciraltos.com\/?p=1695"},"modified":"2023-03-23T22:13:10","modified_gmt":"2023-03-24T03:13:10","slug":"azure-point-to-site-vpn-with-certificate-based-authentication","status":"publish","type":"post","link":"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/","title":{"rendered":"Azure Point-to-Site VPN with Certificate Based Authentication"},"content":{"rendered":"\n<figure class=\"wp-block-image alignleft size-thumbnail\"><img decoding=\"async\" loading=\"lazy\" width=\"150\" height=\"150\" src=\"https:\/\/www.ciraltos.com\/wp-content\/uploads\/2020\/01\/Azure-VPN-Gateway-v1-150x150.png\" alt=\"\" class=\"wp-image-1555\" srcset=\"https:\/\/www.ciraltos.com\/staging2\/wp-content\/uploads\/2020\/01\/Azure-VPN-Gateway-v1-150x150.png 150w, https:\/\/www.ciraltos.com\/staging2\/wp-content\/uploads\/2020\/01\/Azure-VPN-Gateway-v1-300x300.png 300w, https:\/\/www.ciraltos.com\/staging2\/wp-content\/uploads\/2020\/01\/Azure-VPN-Gateway-v1.png 512w\" sizes=\"(max-width: 150px) 100vw, 150px\" \/><\/figure>\n\n\n\n<p>This video goes over how to deploy an Azure VNet Gateway on an existing VNet and enable Point-to-Site (P2S) VPN connections.&nbsp; A P2S connection allows clients to connect securely to an Azure Gateway and access resources on the private VNet.&nbsp; The video goes on to demonstrate how to create a root certificate and client certificates to use for authentication.&nbsp; After that, configuring the client is demonstrated as well as blocking a client by revoking a certificate.<\/p>\n\n\n\n<!--more-->\n\n\n\n<figure class=\"wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<div class=\"ast-oembed-container\" style=\"height: 100%;\"><iframe loading=\"lazy\" title=\"Azure Point-to-Site VPN with Certificate Based Authentication\" width=\"500\" height=\"281\" src=\"https:\/\/www.youtube.com\/embed\/Yshpo6V1qUQ?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" allowfullscreen><\/iframe><\/div>\n<\/div><\/figure>\n\n\n\n<p>The PowerShell commands referenced in the video are located below:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">#Create&nbsp;the&nbsp;root&nbsp;cert\n$cert&nbsp;=&nbsp;New-SelfSignedCertificate&nbsp;-Type&nbsp;Custom&nbsp;-KeySpec&nbsp;Signature&nbsp;`\n-Subject&nbsp;\"CN=WestP2SRootCert\"&nbsp;-KeyExportPolicy&nbsp;Exportable&nbsp;`\n-HashAlgorithm&nbsp;sha256&nbsp;-KeyLength&nbsp;2048&nbsp;`\n-CertStoreLocation&nbsp;\"Cert:\\CurrentUser\\My\"&nbsp; `\n-KeyUsageProperty&nbsp;Sign&nbsp;-KeyUsage&nbsp;CertSign \n\n#&nbsp;Create&nbsp;Client&nbsp;Cert\nNew-SelfSignedCertificate&nbsp;-Type&nbsp;Custom&nbsp;-DnsName&nbsp;P2SChildCert&nbsp;-KeySpec&nbsp;Signature&nbsp;`\n-Subject&nbsp;\"CN=WestP2SClientCert1\"&nbsp;-KeyExportPolicy&nbsp;Exportable&nbsp;`\n-HashAlgorithm&nbsp;sha256&nbsp;-KeyLength&nbsp;2048&nbsp;`\n-CertStoreLocation&nbsp;\"Cert:\\CurrentUser\\My\"&nbsp;`\n-Signer&nbsp;$cert&nbsp;-TextExtension&nbsp;@(\"2.5.29.37={text}1.3.6.1.5.5.7.3.2\") <\/pre>\n","protected":false},"excerpt":{"rendered":"<p>This video goes over how to deploy an Azure VNet Gateway on an existing VNet and enable Point-to-Site (P2S) VPN connections.&nbsp; A P2S connection allows clients to connect securely to an Azure Gateway and access resources on the private VNet.&nbsp; The video goes on to demonstrate how to create a root certificate and client certificates &hellip;<\/p>\n<p class=\"read-more\"> <a class=\"\" href=\"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/\"> <span class=\"screen-reader-text\">Azure Point-to-Site VPN with Certificate Based Authentication<\/span> Read More &raquo;<\/a><\/p>\n","protected":false},"author":1,"featured_media":1555,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"default","ast-global-header-display":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":""},"categories":[2],"tags":[744,9,361,746,409,741,638,738,510,736,34,737,742,747,740,644,745,670,645,119,739,733,735,680,213,734,511,122],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v20.3 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Azure Point-to-Site VPN with Certificate Based Authentication - ciraltos<\/title>\n<meta name=\"description\" content=\"This video goes over how to deploy an Azure VNet Gateway and enable Point-to-Site (P2S) VPN connections.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Azure Point-to-Site VPN with Certificate Based Authentication - ciraltos\" \/>\n<meta property=\"og:description\" content=\"This video goes over how to deploy an Azure VNet Gateway and enable Point-to-Site (P2S) VPN connections.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/\" \/>\n<meta property=\"og:site_name\" content=\"ciraltos\" \/>\n<meta property=\"article:published_time\" content=\"2020-06-05T11:44:17+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-03-24T03:13:10+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.ciraltos.com\/staging2\/wp-content\/uploads\/2020\/01\/Azure-VPN-Gateway-v1.png\" \/>\n\t<meta property=\"og:image:width\" content=\"512\" \/>\n\t<meta property=\"og:image:height\" content=\"512\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Travis Roberts\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@ciraltos\" \/>\n<meta name=\"twitter:site\" content=\"@ciraltos\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Travis Roberts\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/\"},\"author\":{\"name\":\"Travis Roberts\",\"@id\":\"http:\/\/www.ciraltos.com\/staging2\/#\/schema\/person\/25391996d6cddfecd4d257162b7e373a\"},\"headline\":\"Azure Point-to-Site VPN with Certificate Based Authentication\",\"datePublished\":\"2020-06-05T11:44:17+00:00\",\"dateModified\":\"2023-03-24T03:13:10+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/\"},\"wordCount\":104,\"commentCount\":5,\"publisher\":{\"@id\":\"http:\/\/www.ciraltos.com\/staging2\/#\/schema\/person\/25391996d6cddfecd4d257162b7e373a\"},\"keywords\":[\"Android\",\"Azure\",\"Certificate\",\"client VPN\",\"Gateway\",\"Gateway SKU\",\"IKEv2\",\"iOS\",\"Linux\",\"Mac\",\"network\",\"OpenVPN\",\"P2S\",\"Point-to-site\",\"RADIUS\",\"S2S\",\"secure connection\",\"Security\",\"Site to Site\",\"SKU\",\"SSL\",\"SSTP\",\"TLS\",\"virtual network\",\"VNet\",\"VNet Gateway\",\"VPN\",\"windows\"],\"articleSection\":[\"Azure\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/\",\"url\":\"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/\",\"name\":\"Azure Point-to-Site VPN with Certificate Based Authentication - ciraltos\",\"isPartOf\":{\"@id\":\"http:\/\/www.ciraltos.com\/staging2\/#website\"},\"datePublished\":\"2020-06-05T11:44:17+00:00\",\"dateModified\":\"2023-03-24T03:13:10+00:00\",\"description\":\"This video goes over how to deploy an Azure VNet Gateway and enable Point-to-Site (P2S) VPN connections.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"http:\/\/www.ciraltos.com\/staging2\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Azure Point-to-Site VPN with Certificate Based Authentication\"}]},{\"@type\":\"WebSite\",\"@id\":\"http:\/\/www.ciraltos.com\/staging2\/#website\",\"url\":\"http:\/\/www.ciraltos.com\/staging2\/\",\"name\":\"ciraltos\",\"description\":\"cloud, technology and trends\",\"publisher\":{\"@id\":\"http:\/\/www.ciraltos.com\/staging2\/#\/schema\/person\/25391996d6cddfecd4d257162b7e373a\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"http:\/\/www.ciraltos.com\/staging2\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"http:\/\/www.ciraltos.com\/staging2\/#\/schema\/person\/25391996d6cddfecd4d257162b7e373a\",\"name\":\"Travis Roberts\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"http:\/\/www.ciraltos.com\/staging2\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/www.ciraltos.com\/staging2\/wp-content\/uploads\/2023\/03\/Logo-1.png\",\"contentUrl\":\"https:\/\/www.ciraltos.com\/staging2\/wp-content\/uploads\/2023\/03\/Logo-1.png\",\"width\":5657,\"height\":3563,\"caption\":\"Travis Roberts\"},\"logo\":{\"@id\":\"http:\/\/www.ciraltos.com\/staging2\/#\/schema\/person\/image\/\"},\"sameAs\":[\"http:\/\/www.ciraltos.com\",\"https:\/\/twitter.com\/ciraltos\"],\"url\":\"https:\/\/www.ciraltos.com\/staging2\/author\/admin\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Azure Point-to-Site VPN with Certificate Based Authentication - ciraltos","description":"This video goes over how to deploy an Azure VNet Gateway and enable Point-to-Site (P2S) VPN connections.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/","og_locale":"en_US","og_type":"article","og_title":"Azure Point-to-Site VPN with Certificate Based Authentication - ciraltos","og_description":"This video goes over how to deploy an Azure VNet Gateway and enable Point-to-Site (P2S) VPN connections.","og_url":"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/","og_site_name":"ciraltos","article_published_time":"2020-06-05T11:44:17+00:00","article_modified_time":"2023-03-24T03:13:10+00:00","og_image":[{"width":512,"height":512,"url":"https:\/\/www.ciraltos.com\/staging2\/wp-content\/uploads\/2020\/01\/Azure-VPN-Gateway-v1.png","type":"image\/png"}],"author":"Travis Roberts","twitter_card":"summary_large_image","twitter_creator":"@ciraltos","twitter_site":"@ciraltos","twitter_misc":{"Written by":"Travis Roberts","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/#article","isPartOf":{"@id":"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/"},"author":{"name":"Travis Roberts","@id":"http:\/\/www.ciraltos.com\/staging2\/#\/schema\/person\/25391996d6cddfecd4d257162b7e373a"},"headline":"Azure Point-to-Site VPN with Certificate Based Authentication","datePublished":"2020-06-05T11:44:17+00:00","dateModified":"2023-03-24T03:13:10+00:00","mainEntityOfPage":{"@id":"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/"},"wordCount":104,"commentCount":5,"publisher":{"@id":"http:\/\/www.ciraltos.com\/staging2\/#\/schema\/person\/25391996d6cddfecd4d257162b7e373a"},"keywords":["Android","Azure","Certificate","client VPN","Gateway","Gateway SKU","IKEv2","iOS","Linux","Mac","network","OpenVPN","P2S","Point-to-site","RADIUS","S2S","secure connection","Security","Site to Site","SKU","SSL","SSTP","TLS","virtual network","VNet","VNet Gateway","VPN","windows"],"articleSection":["Azure"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/","url":"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/","name":"Azure Point-to-Site VPN with Certificate Based Authentication - ciraltos","isPartOf":{"@id":"http:\/\/www.ciraltos.com\/staging2\/#website"},"datePublished":"2020-06-05T11:44:17+00:00","dateModified":"2023-03-24T03:13:10+00:00","description":"This video goes over how to deploy an Azure VNet Gateway and enable Point-to-Site (P2S) VPN connections.","breadcrumb":{"@id":"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.ciraltos.com\/staging2\/azure-point-to-site-vpn-with-certificate-based-authentication\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"http:\/\/www.ciraltos.com\/staging2\/"},{"@type":"ListItem","position":2,"name":"Azure Point-to-Site VPN with Certificate Based Authentication"}]},{"@type":"WebSite","@id":"http:\/\/www.ciraltos.com\/staging2\/#website","url":"http:\/\/www.ciraltos.com\/staging2\/","name":"ciraltos","description":"cloud, technology and trends","publisher":{"@id":"http:\/\/www.ciraltos.com\/staging2\/#\/schema\/person\/25391996d6cddfecd4d257162b7e373a"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"http:\/\/www.ciraltos.com\/staging2\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":["Person","Organization"],"@id":"http:\/\/www.ciraltos.com\/staging2\/#\/schema\/person\/25391996d6cddfecd4d257162b7e373a","name":"Travis Roberts","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"http:\/\/www.ciraltos.com\/staging2\/#\/schema\/person\/image\/","url":"https:\/\/www.ciraltos.com\/staging2\/wp-content\/uploads\/2023\/03\/Logo-1.png","contentUrl":"https:\/\/www.ciraltos.com\/staging2\/wp-content\/uploads\/2023\/03\/Logo-1.png","width":5657,"height":3563,"caption":"Travis Roberts"},"logo":{"@id":"http:\/\/www.ciraltos.com\/staging2\/#\/schema\/person\/image\/"},"sameAs":["http:\/\/www.ciraltos.com","https:\/\/twitter.com\/ciraltos"],"url":"https:\/\/www.ciraltos.com\/staging2\/author\/admin\/"}]}},"_links":{"self":[{"href":"https:\/\/www.ciraltos.com\/staging2\/wp-json\/wp\/v2\/posts\/1695"}],"collection":[{"href":"https:\/\/www.ciraltos.com\/staging2\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ciraltos.com\/staging2\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ciraltos.com\/staging2\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ciraltos.com\/staging2\/wp-json\/wp\/v2\/comments?post=1695"}],"version-history":[{"count":4,"href":"https:\/\/www.ciraltos.com\/staging2\/wp-json\/wp\/v2\/posts\/1695\/revisions"}],"predecessor-version":[{"id":3938,"href":"https:\/\/www.ciraltos.com\/staging2\/wp-json\/wp\/v2\/posts\/1695\/revisions\/3938"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.ciraltos.com\/staging2\/wp-json\/wp\/v2\/media\/1555"}],"wp:attachment":[{"href":"https:\/\/www.ciraltos.com\/staging2\/wp-json\/wp\/v2\/media?parent=1695"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ciraltos.com\/staging2\/wp-json\/wp\/v2\/categories?post=1695"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ciraltos.com\/staging2\/wp-json\/wp\/v2\/tags?post=1695"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}