Hello, I cannto configute the P2S VPN to azure on MAC. I have it working on Windows. I have installed both certificates Root and Client on MAC, create the Native VPN as descriver on the documentation and i dont get a conntection <a href="https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Flearn.microsoft.com%2Fen-us%2Fazure%2Fvpn-gateway%2Fpoint-to-site-vpn-client-cert-mac&data=05%7C02%7Csergio.sarabando%40sysdomain.pt%7Cd20814d9739e4bf2479108dd31516501%7Cacbf282858894d64a58b3f4f4489fc0e%7C0%7C0%7C638720947877817866%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=VHVy4r47KEI1SoyN7pzDSPJpjeju4tT1HW%2BT7wXVvCg%3D&reserved=0%22eur01.safelinks.protection.outlook.com%22" rel="ugc nofollow">https://learn.microsoft.com/en-us/azure/vpn-gateway/point-to-site-vpn-client-cert-mac Configure P2S VPN clients - certificate authentication - macOS native client - Azure VPN Gateway | Microsoft Learn Can anyone assist? Best regards Sergio Sarabando

Hello Sérgio Sarabando We appreciate your patience! Configure server settings for P2S VPN Gateway certificate authentication In this article Prerequisites Generate certificates Add the VPN client address pool Specify the tunnel and authentication type Add another public IP address Upload root certificate public key information Generate VPN client profile configuration files Configure VPN clients and connect to Azure Add or remove trusted root certificates This warning indicates that the OpenVPN client is not configured to verify the server's certificate. While it may not prevent a connection. Please ensure that the correct CA certificate (ca.crt) is specified in your configuration file. For information about working with certificates, see Point-to site: Generate certificates - Linux . Refer below for Configure OpenVPN client for P2S certificate authentication connections - Linux Refer: https://learn.microsoft.com/en-us/azure/vpn-gateway/point-to-site-vpn-client-certificate-openvpn-linux Configure P2S VPN clients: certificate authentication - OpenVPN client - macOS Refer: https://learn.microsoft.com/en-us/azure/vpn-gateway/point-to-site-vpn-client-certificate-openvpn-mac Please don’t forget to close the thread by clicking " Accept the answer " wherever the information provided helps you, as this can be beneficial to other community members. How to accept answer: https://learn.microsoft.com/en-us/answers/support/accept-answer#accept-an-answer Regards, Ganesh

P2S Azure VPN

Sérgio Sarabando 0

Hello,

I cannto configute the P2S VPN to azure on MAC. I have it working on Windows.

I have installed both certificates Root and Client on MAC, create the Native VPN as descriver on the documentation and i dont get a conntection

https://learn.microsoft.com/en-us/azure/vpn-gateway/point-to-site-vpn-client-cert-mac

Configure P2S VPN clients - certificate authentication - macOS native client - Azure VPN Gateway | Microsoft Learn

Can anyone assist?

Best regards

Sergio Sarabando

Ganesh Patapati 3,130 Reputation points Microsoft Vendor

2025-01-13T15:06:47.7233333+00:00
Hi Sérgio Sarabando

Greetings!

Welcome to the Microsoft Q&A Platform. Thank you for reaching out & I hope you are doing well.

Could you share a screenshot of the error and provide more details about the issue so we can identify the problem?

In the meantime, please refer to the documents below, which may assist you in troubleshooting the issue.

Troubleshoot Point-to-Site VPN connections from macOS X VPN clients.

Refer: https://learn.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-troubleshoot-point-to-site-osx-ikev2

VPN client configuration in macOS X is very basic for IKEv2 connections and doesn't allow for much customization. There are only four settings that need to be checked:

Server Address

Remote ID

Local ID

Authentication Settings

OS Version (10.11 or higher)

If above is unclear and/or you are unsure about something add a comment below.

Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.

Regards,

Ganesh
Sai Prasanna Sinde 3,410 Reputation points Microsoft Vendor

2025-01-15T17:23:59.7033333+00:00

Hi Sérgio Sarabando

Greetings!

I would like to follow up with the thread.

Could you please go through the last comment and provide us the required information to drive the thread further.

If you need any further assistance, please don't hesitate to reach out to us. We are happy to assist you.

Thanks,
Sai.
Sai Prasanna Sinde 3,410 Reputation points Microsoft Vendor

2025-01-16T18:24:56.94+00:00

Hi Sérgio Sarabando

Greetings of the day!

I would like to follow up with the thread.

Could you please go through the last comment and provide us the required information to drive the thread further.

If you need any further assistance, please don't hesitate to reach out to us. We are happy to assist you.

Thanks,
Sai.
Sérgio Sarabando 0 Reputation points

2025-01-16T23:46:18.84+00:00

Hello Ganesh Patapati

I 'm using the native VPN connection on MAC.

As it seems it is a Ike2 connention that appears to be not supported in 'Basic' SKU.

I Have to create a OpenVPN connection but I don know How to address thar in azure side.

The P2S connection had no available type configuration

Best Regards

Sergio
Ganesh Patapati 3,130 Reputation points Microsoft Vendor

2025-01-20T19:55:00.63+00:00
Hi Sérgio Sarabando

We appreciate your Patience!

Yes, you are correct Ike2 connection that appears to be not supported in 'Basic' SKU.

For Configuring P2S VPN clients: certificate authentication - OpenVPN client - macOS

Refer: https://learn.microsoft.com/en-us/azure/vpn-gateway/point-to-site-vpn-client-certificate-openvpn-mac

Before you begin configuring your client, verify that you're on the correct article. The following table shows the configuration articles available for Azure VPN Gateway P2S VPN clients. Steps differ, depending on the authentication type, tunnel type, and the client OS.

Refer: https://learn.microsoft.com/en-us/azure/vpn-gateway/point-to-site-vpn-client-certificate-openvpn-mac#before-you-begin

Important: Only macOS 10.13 and above is supported with OpenVPN protocol.

Note: OpenVPN Client version 2.6 is not yet supported.

Steps to follow for configuring the OpenVPN client:

Download and install an OpenVPN client, such as TunnelBlick.

If you haven't already done so, download the VPN client profile package from the Azure portal.

Unzip the profile. Open the vpnconfig.ovpn configuration file from the OpenVPN folder in a text editor.

Fill in the P2S client certificate section with the P2S client certificate public key in base64. In a PEM formatted certificate, you can open the .cer file and copy over the base64 key between the certificate headers.

Fill in the private key section with the P2S client certificate private key in base64. See Export your private key on the OpenVPN site for information about how to extract a private key.

Don't change any other fields. Use the filled in configuration in client input to connect to the VPN.

Double-click the profile file to create the profile in Tunnelblick.

Launch Tunnelblick from the applications folder.

Click on the Tunnelblick icon in the system tray and pick connect.

I hope this has been helpful! Your feedback is important so please take a moment to accept answers. If you still have questions, please let us know what is needed in the comments so the question can be answered. Thank you for helping to improve Microsoft Q&A!

Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.

Regards,

Ganesh
Ganesh Patapati 3,130 Reputation points Microsoft Vendor

2025-01-21T18:32:21.49+00:00

Hello Sérgio Sarabando

We appreciate your Patience!

I hope this has been helpful! Your feedback is important so please take a moment to accept answers. If you still have questions, please let us know what is needed in the comments so the question can be answered. Thank you for helping to improve Microsoft Q&A!

Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

Regards,

Ganesh
Sérgio Sarabando 0 Reputation points

2025-01-21T23:57:54.7233333+00:00
Hello

Sorry for the delay on the reply

I Have read both the documents previously

The first one is just the same I was using for the Ike2 connection.

The seccont it refer

Unzip the profile. Open the vpnconfig.ovpn configuration file from the OpenVPN folder in a text editor.

I Assume the file is the example one tha came with the application On remote entry I should fill what cames in VPNServer in the genereic directory of the download Azure client

I get to create 3 files ca.crt, client.crt and and client.key

The ca.crt i exported the root certificate in pem format and extracted the base64 text

for the next two i dont have a clue how to get them from the registered certificate. on export i get a p12 file
Deleted

This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.

2 answers

Deleted

This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.

Comments have been turned off. Learn more
Ganesh Patapati 3,130 Reputation points Microsoft Vendor

2025-01-22T22:22:59.29+00:00
Hello Sérgio Sarabando

We appreciate your patience!

Configure server settings for P2S VPN Gateway certificate authentication

In this article

Prerequisites

Generate certificates

Add the VPN client address pool

Specify the tunnel and authentication type

Add another public IP address

Upload root certificate public key information

Generate VPN client profile configuration files

Configure VPN clients and connect to Azure

Add or remove trusted root certificates

This warning indicates that the OpenVPN client is not configured to verify the server's certificate. While it may not prevent a connection. Please ensure that the correct CA certificate (ca.crt) is specified in your configuration file.

For information about working with certificates, see Point-to site: Generate certificates - Linux.

Refer below for Configure OpenVPN client for P2S certificate authentication connections - Linux

Refer: https://learn.microsoft.com/en-us/azure/vpn-gateway/point-to-site-vpn-client-certificate-openvpn-linux

Configure P2S VPN clients: certificate authentication - OpenVPN client - macOS

Refer: https://learn.microsoft.com/en-us/azure/vpn-gateway/point-to-site-vpn-client-certificate-openvpn-mac

Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.

How to accept answer: https://learn.microsoft.com/en-us/answers/support/accept-answer#accept-an-answer

Regards,

Ganesh
Please sign in to rate this answer.
Ganesh Patapati 3,130 Reputation points Microsoft Vendor

2025-01-23T19:53:40.49+00:00

Hello Sérgio Sarabando

Greetings!

I hope this has been helpful! Your feedback is important so please take a moment to accept answers. If you still have questions, please let us know what is needed in the comments so the question can be answered. Thank you for helping to improve Microsoft Q&A!

Please don’t forget to close the thread by clicking "Accept the answer" wherever the information provided helps you, as this can be beneficial to other community members.

Regards,

Ganesh
Sign in to comment

Use comments to ask for clarification, additional information, or improvements to the question.

Share via

P2S Azure VPN

2 answers

Your answer