2

I need to change my TMG server from an old VPN server certificate to a new one due to changing my internal CA structure.

Where the heck do I do that? I don't see any certificate references in TMG nor in the RRAS MMC.

The references I've found on the net to this process have been vague at best.

EDIT - I am using a L2TP / IPSEC VPN.

Tim Brigham
  • 15,465
  • 7
  • 72
  • 113

1 Answers1

2

The SSTP VPN service is always associated with a HTTPS web listener; you can change the certificate it uses in its properties.

If you have lots of listeners around and/or don't know what listener the VPN service is using, you can check that in the VPN properties, in the "Protocols" tab.


Edit:

For L2TP/IPSEC, there is no option in the TMG (or ISA) management console to configure which certificate is used; you just need a valid certificate to be stored in the server's machine certificate store, which can be accessed by using the Certificates MMC.

Massimo
  • 68,714
  • 56
  • 196
  • 319