Setup sstp vpn windows 2008

Right-click Ports and choose Properties and enable SSTP for remote access inbound connections and set the number of connections to a suitable number for your organization. Create an MMC and add in the local computers Certificate snap-in.

View the properties of your trusted certificate that you are using for Remote Web Workplace and note down the Thumbprint value of this certificate. Ensure that this certificate is associated with 0. Type netsh http show ssl from elevated command prompt to get this information. You typically get four entries with IP:port being the first line of each.

If the certificate hash is not the same for both the remote web workplace certificate and the netsh bindings information in the previous two steps or if you are missing the IPv6 binding then you need to reset the bindings. If they are same then jump to step 7. If you get any certificate errors during this in the web browser you must fix them now before continuing.

This step should not be needed if a trusted certificate has already been installed on the server and it matches the remote. The binding should be deleted successfully. The binding should be deleted successfully if an IPv6 binding existed, otherwise expect to see an error which can be ignored.

Ensure that the bindings for the SBS Web Applications site is correctly bound to your trusted remote web workplace certificate. These errors can be ignored on SBS but if you click the links to fix the errors then all will work fine. The only condition is that this fixing of errors must be done after SSTP is configured correctly so ensure SSTP connectivity works and then come back to this step to fix.

Note that you will not see anything in the web browser. Note that you should not have got any certificate errors when browsing to this site and if you did you need to resolve them before continuing further in these steps.

Not an IT pro? Windows Server TechCenter. Sign in. United States English. Ask a question. Quick access. Search related threads. Remove From My Forums. Answered by:. Archived Forums. Network Infrastructure Servers. Sign in to vote. Surely a similar setup in the link above can be done but on one server?? Monday, May 14, PM. If necessary, delete and readd the correct certificate binding… 1.

Remove binding from IPv4 netsh http delete ssl 0. Remove binding from IPv6 netsh http delete ssl [::] 3. Connectivity can be made through web proxy servers.

The small footprint VPN client is easily accessible. Troubleshooting help can be found here , here , and here. You might also like Remote Desktop Services.