Hey,
I am setting up an test lab for VPN testing.
First I wanted to configure SSTP just with RRAS (without TMG SSL Listener) which I thought should have been very easy but I have som troubles with my SSL cert.
My RRAS server has an internal name IFS12.xx.xx but my public dns is vpn.xx.xx.
My first idea was to use an template and edit manually the CN for vpn.xx.xx but then the request failed because dsn was not found (as expected)
Then I created a second Template (copied from computer template) with Server Authentication, Private Key Strength 4096, Private Key exportable and Subject Name by Request not from Active Directory Information (!).
This template does everything I need for my SSTP Lsitener Cert, but the issued by field is wrong, it's not the Root-CA but the common name again vpn.xx.xx !?
Where is my mistake? Or is there a better / correct way to solve that public name issue (SAN?)
thanks in advance