In my previous article, I have explained about P2S VPN gateway “Azure Native Certificate Authentication” through Self Signed Root certificate. The Self Signed Root Certificate cannot be shared with the end users as it has more privileges. The Child Certificate can be exported from the Self Signed Root Certificate, and the Azure resources can be accessed through this certificate by the end users.
INTRODUCTION
In my previous article, I explained about P2S VPN gateway “Azure Native Certificate Authentication” through Self-Signed Root certificate. The Self-Signed Root Certificate cannot be shared with the end users as it has more privileges. The Child Certificate can be exported from the Self Signed Root Certificate, and the Azure resources can be accessed through this certificate by the end users.
CREATE & EXPORT
Share the exported Certificate with the end-users' PC and install the same under the "Personal Certificate".
Install & connect the VPN Client in End user PC using the below steps.
SUMMARY
In this article, I have explained about creating and exporting P2S child certificate.
The P2S Child certificate can be used by the end users to access Azure Resources. Though the end users can connect to the Azure network and can access the Azure VMs, administrator can restrict RDP access to the VMs through inbound rules in Network Security Group.
Understanding Azure : A Beginner’s Guide