Setting Up Certificate-Based Point-to-Site Azure VPN
HTML-код
- Опубликовано: 18 сен 2024
- In this video, I walk through setting up a point-to-site VPN connection to a brand new Microsoft Azure cloud environment. I start with a blank Azure subscription, and add the following resources:
- Virtual network
- Virtual machine
- Virtual network gateway
Then, I test the virtual machine over a public RDP connection.
Next, I create self-signed certificates in order to setup a point-to-site connection using certificate authentication in Azure.
I test this IKEv2 authentication setup using both a Windows 10 machine, and a MacOS machine (you get to see both!)
I test RDP to the private IP of the Azure virtual machine from both the Windows machine and the MacOS machine.
I also show you how to fix an issue on the MacOS machine that requires administrator elevation in order to complete the VPN connection to Azure.
Once that fix is complete, I show you how to tear down your Azure test environment.
I hope that this tutorial is helpful to you in your Azure cloud journey!
Two specific instances in which this setup would be helpful:
- If you are having problems with the Azure VPN desktop application requiring administrator elevation each time it runs, but don't have a solution, you can use this IKEv2 certificate solution as a workaround!
- If you are having trouble with your VPN on a Mac asking for administrator elevation in order to complete the VPN connection, this video will help you! I got an error on MacOS that said, "macOS wants to make changes. Enter an administrator's name and password to allow this. macOS wants to use the 'System' keychain."
#AzureCloud #CloudArchitect #AzureVPN #msp #managedservices
Video timecode notes:
Create virtual network - 0:45
Create virtual machine - 3:15
Create virtual network gateway - 5:50
Test RDP connection to VM - 9:03
Disable RDP in Network Security Group (NSG) - 11:02
Create self-signed certificates (root certificate and client certificate) - 11:47
(URL to guide you in creation of self-signed certificates: learn.microsof...)
Virtual Network Gateway setup complete - 15:56
Point-to-site Configuration - 16:02
Download VPN Client ZIP file - 18:23
Create VPN Connection on Windows 10 machine (IKEv2) - 21:42
Test RDP Connection over P2S VPN on Windows 10 machine - 23:12
Create VPN Connection on MacOS machine (IKEv2) - 24:58
Test RDP Connection over P2S VPN on MacOS machine - 29:00
Fix MacOS administrator elevation issue - 29:56
Azure Environment Cleanup - 31:54
Keywords: Azure, cloud, Azure VPN, certificate-based VPN, IKEv2, virtual network, virtual network gateway, virtual machine, Azure virtual machine, test RDP connection in Azure, network security group rules, Azure VPN client administrator privilege problem
Thanks, Bob, for the content. Desmond Weston here.
How can I generate the root and child certificate on mac?
What is the remote ID and where you get it
This connects me but block all other networks