VPN authentication

I

Ian

I want to set a VPN using certificates for Authentication.
I have used KB article 259880 as a basis for doing this.

When I configure the RRAS profile on the server to use the
certificate, I get the error:

A certificate could not be found that can be used with
this Extensible Authentication Protocol.

What am I doing wrong?
 
S

Sam Salhi [MSFT]

You need a valid certificate that:
a) Subject name
b) The subject name is equal to the machine's dns name
b) Has "Server Authentication" EKU
c) Has Microsoft RSA SChannel Cryptographic provider

(Machine cert should have all the above, you might need to modify the
template)
 
P

Priya Raghavan [MSFT]

You require User certificates for EAP authentication. Are the certs
installed in user store?

Thanks,
Priya.
 
P

Priya Raghavan [MSFT]

Sorry, I meant in the CLIENT side, you require user certificates. For the
SERVER side, you need to check if your certificate on the server side has
the requirements specified by Sam below.

Thanks,
Priya
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

certificate on client. 4
Configuring a VPN to use EAP 2
Explaination required for using RRAS / L2TP/IPSEC and certficates for VPN connection 2
Windows XP EAP VPN from XP to SBS03 with client cert doesn't work from token 0
VPN client Access Denied Error 691 using EAP 0
Problem connecting OSX and Vista Clients to Win2k3 L2TP VPN Server 0
vpn l25p fails over remote but works in lan 2
use certificates on RRAS server 4

Top