Azure (RM) | VPN Point to Site | Step By Step Tutorial

Published by admin on



Download Artifacts –
Short Video –
Long Video –

How to Create a Point to Site VPN to Azure Virtual Network
Step by Step Tutorial

1) Create a Virtual Network
0) Named – VNET-01
1) Address Space – 10.10.0.0/16
2) Subnet – 10.10.10.0/24
2) Create a GatewaySubnet within the Virtual Network
1) GatewaySubnet – 10.10.1.0/24
3) Create a Virtual Network Gateway
1) Associate to Virtual Network VNET-01
2) This takes Azure 45 minutes to complete
4) Create a VM within the Virtual Network VNET-01
5) Create the Root VPN Certificate
1) Download Windows SDK if neccessary –
2) Go to Directory – C:Program Files (x86)Windows Kits10binx86
3) Run Command – makecert -sky exchange -r -n “CN=AzureVpnRootCert” -pe -a sha1 -len 2048 -ss My “AzureVpnRootCert.cer”
4) Run CertMgr to Convert to BASE64 – certmgr.msc
5) Find Cert in PersonalCertificates and Export to BASE64 without Password
6) Open Base64 Cert in Text Editor, put in one line and paste into Azure Root Cert Settings
6) Create the Client Certificate
1) Command – makecert.exe -n “CN=AzureVpnClientCert” -pe -sky exchange -m 96 -ss My -in “AzureVpnRootCert” -is my -a sha1
2) Run CertMgr to Convert to PFX file – certmgr.msc
3) Find Cert in PersonalCertificates and Export to BASE64 with Password
4) This pfx file must be installed and distributed to users with VPN Software
7) Get up Gateway Point to Site Setting
1) Address Space – 172.20.20.0/24
2) Set up Root Certificate
a) Name – AzureVPN
b) Cert – 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
8) Download VPN Software
9) Install Client Cert
1) Right Click On Client Certificate, Click Install
2) Install VPN Software
10) Connect VPN via Network Connections

source


45 Comments

Adolfo Galán · June 28, 2018 at 6:45 pm

Hi! it was an amazing tutorial, all the things work as you did. I was able to do the tutorial and now y have a VPN with some VM, Thank you very much. I have a question, i want to navigate the internet thru the VPN, how can i made that, by now in the client machine my vpn say: without internet access. Thanks again.

Guy Harwood · June 28, 2018 at 6:45 pm

really thorough, thanks!

Armando Roman · June 28, 2018 at 6:45 pm

Excellent video, thanks for sharing¡

angelo papiccio · June 28, 2018 at 6:45 pm

Great job. Easy to follow. Very clear instructions. It helped me with my own VPN I am using for my studies. Thank you

Dharmendra Kumar · June 28, 2018 at 6:45 pm

very well explained. Thank you

Tejas Gurjar · June 28, 2018 at 6:45 pm

Very helpful . Thank you very much 🙂

arbilus · June 28, 2018 at 6:45 pm

Hi. Is it possible to open a session on a computer using credentials from a AD DS which is behind a VPN, using this VPN client from Azure ?

Tony Jackson · June 28, 2018 at 6:45 pm

Good Video. But there is never a definition of what things actually does.

Sandy · June 28, 2018 at 6:45 pm

Thanks for the video, I was able to use it for my server rented from datasoft
http://datasoft.ws.…..

Herman · June 28, 2018 at 6:45 pm

Thank you! Very informative!

Wan Shen Low · June 28, 2018 at 6:45 pm

Hi, can i know is there a necessary to have virtual machine ? can i skip the virtual machine part?

dibbkd dibbkd · June 28, 2018 at 6:45 pm

Liked and Subscribed, thanks man!

David M · June 28, 2018 at 6:45 pm

Excellent! Looking forward to plenty more of your videos! You're a true teacher!

Rob Winn · June 28, 2018 at 6:45 pm

Have you figured out how to install the VPN client package when you are not the admin on the machine? I have found that it won't install unless you are logged in as an admin AND that, once it is installed, only the admin account can see it.

Kennedy Kinyanjui · June 28, 2018 at 6:45 pm

Amazing tutorial. Thanks.

Edgy Boi · June 28, 2018 at 6:45 pm

anyone else get A certificate could not be found that can be used with this Extensible Authentication Protocol. (Error 798)

Rana abdul Wahab · June 28, 2018 at 6:45 pm

hi teacher !
extremely nice video and nice explained
i am facing this error please assist me
"A certificate could not be found that can be used with this Extensible Authentication Protocol. (Error 798)
"

RuiyaReese · June 28, 2018 at 6:45 pm

Nice tutorial!! We have an existing production site-to-site network and I keep getting, "This virtual network has a gateway of static routing type. To add a new connection, delete the existing gateway and recreate it as dynamic." whenever I attempt to create a P2S. Can I create another virtual network and virtual network gateway and link it to the existing?

Sasi Kumar · June 28, 2018 at 6:45 pm

Excellent Demo for P2S…..Thankyou so much….

Conor Murphy · June 28, 2018 at 6:45 pm

I don't suppose anyone has adapted the makecert commands to the new New-SelfSignedCertificate cmdlet?

Raymond Wong · June 28, 2018 at 6:45 pm

Very useful Johnny, I have been looking for such video for weeks until i landed here. Thanks.

JonathanAnon · June 28, 2018 at 6:45 pm

Hi there, is the Point To Site designed to be used by Administrators or for end users?

Rakesh Kumar · June 28, 2018 at 6:45 pm

Awesome stuff. You are very good teacher too.

ipartyatl · June 28, 2018 at 6:45 pm

Great Tutorial man!

mrVebNer · June 28, 2018 at 6:45 pm

It' worked. Thanks for the tutorial

techo design · June 28, 2018 at 6:45 pm

When trying to set the path, it is saying that my syntax Is incorrect
C:UsersBSM Universe>SET PATH=%PATH%C:UsersBSM Universe>
but I can't work out where.
For some reason my power shell is just opening in C:UsersBSM Universe
Not in the x86 folders

Parag Dutta · June 28, 2018 at 6:45 pm

Hi., while I installed the VPN Client package and try to connect, it is showing the error "Custom script (to update your routing table) failed (8007025b)". Can you help me out?

Leonardo Aoun · June 28, 2018 at 6:45 pm

Thanks for the video, but it seems that the client only works on Windows for now. Anyone knows what to do with UNIX systems?

gerson jair · June 28, 2018 at 6:45 pm

good video… congratulations..

Edwin Overmeer · June 28, 2018 at 6:45 pm

INCREDIBLE tutorial, much better than reading all that (excellent) stuff from the Azure Portal documentation

Pey Geldenhuys · June 28, 2018 at 6:45 pm

Hey – Thanks for this! Excellent video and resources supplied!

sbuja08 · June 28, 2018 at 6:45 pm

Hi, Can anyone let me kno if they have ever managed ping the vm's in the azure vnet via hostname and got a successful hostname reply secondly ever created a domain controller in azure vnet and joined a local pc to domain while vpn is connected

valeronfox · June 28, 2018 at 6:45 pm

Its working! Thanks man! Its good video and save my time!

Billy De Fretes · June 28, 2018 at 6:45 pm

i've just learn azure for couple of months, and this tutorial help me so much because i can learn how to create point to site connection in the fastest and easiest way

JonathanAnon · June 28, 2018 at 6:45 pm

I had this all written up for the old portal, and really wasn't looking forward to having to update all the documentation for effectively carrying out the exact same task. But thankfully your video made this process much easier. thank you.

lwis22306 · June 28, 2018 at 6:45 pm

Trying to start a business and have a question. After I create VPN and attach my VM SQL Server to it, I will begin to make cubes. When my customers/clients in other cities connect to the cubes via MS Excel, will they also need the vpn client certificates installed on their computers?

Cumhur Yalcin · June 28, 2018 at 6:45 pm

Very helpful video.
Thanks guys.

naveen chandara · June 28, 2018 at 6:45 pm

Excellent video…
please make screen zoom too.

Sagar Gurav · June 28, 2018 at 6:45 pm

Excellent video and tutorial, thanks !

Mohd Imran Shaikh · June 28, 2018 at 6:45 pm

Excellent Video, Thanks for the great initiative. Waiting for Site 2 Site VPN steps video.

Jamie Hebbs · June 28, 2018 at 6:45 pm

Excellent video and tutorial, thanks !  Echo Stephane's comments – be great to see a site-to-site VPN video to0

Stéphane Henri Keïta · June 28, 2018 at 6:45 pm

Good Job for this tutorial video. Have you a video tutorial for VPN site to site by step

Mark Grzeszczak · June 28, 2018 at 6:45 pm

Thanks, great overview. I was about ready to launch into Azure and this was helpful.

behnam · June 28, 2018 at 6:45 pm

Great work!! I was testing out azure for first time and your instructions really helped..specially with the certificates. thank you

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

en_USEnglish
en_USEnglish
%d bloggers like this: