I downloaded a new GoDaddy SSL certificate for a client's server to replace the expired certificate. I followed the steps outlined on the GoDaddy site for IIS10 (Server 2016 w/Essentials).
I'm able to access via remote web to remote.domain.org but the VPN doesn't work now.
In RD Gateway Manager, the status is: A server certificate is not yet installed or selected.
I selected Properties and tried to select an existing certificate from the RD Gateway server certificates (Local Computer)/Personal Store. However, the certificate I imported into the Intermediate Certification Authorities does not appear as a certificate choice. I don't know how to get the certificate to appear as a choice. Screen shots below show what I see in the RD Gateway Manager and in the certificates lists.
Please advise as to how to troubleshoot.
Many thanks.
--Art
AND...after installing some server updates on the VM that I'm trying to connect to and its host server, I'm able to connect to the VPN now.
Resolved after some frustrating hours.
Thanks for listening.
One more note: The VPN was working until the old ssl certificate expired...no router or other changes were made...just the cert.
Update: I figured out how to add the SSL certificate to the Certification Authorities...looks okay and this let me import the certificate into the RD Gateway. And I figured out how to export the PFX certificate to set up the Anywhere Access wizard. All looks okay...BUT...I still can't connect via VPN. I get the following error in my client side event log.
Suggestions would be appreciated.
Thanks!
Log Name: System Source: Microsoft-Windows-RasSstp Date: 7/29/2020 7:18:55 PM Event ID: 4 Task Category: None Level: Error Keywords: Classic User: N/A Computer: DESKTOP-J1G1OUE Description: CoId={18D5C122-D831-4A1E-BDBA-387CA399BADE}:The server has refused the Secure Socket Tunneling Protocol (SSTP) request. Either a failure response code or no response code was received. The data portion below contains the response code that was received from the server. This is the HTTP status code present in the response. It can be because the web proxy or the SSTP server might be rejecting the connection, the server might not be configured for SSTP or the server might not have a port available for connection. Event Xml: <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft-Windows-RasSstp" Guid="{6c260f2c-049a-43d8-bf4d-d350a4e6611a}" EventSourceName="RasSstp" /> <EventID Qualifiers="0">4</EventID> <Version>0</Version> <Level>2</Level> <Task>0</Task> <Opcode>0</Opcode> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2020-07-30T00:18:55.522452800Z" /> <EventRecordID>662650</EventRecordID> <Correlation /> <Execution ProcessID="0" ThreadID="0" /> <Channel>System</Channel> <Computer>DESKTOP-J1G1OUE</Computer> <Security /> </System> <EventData> <Data Name="CoId">{18D5C122-D831-4A1E-BDBA-387CA399BADE}</Data> <Data Name="HTTP Response Code">503</Data> </EventData> </Event>
Updating the certificate on a Windows Server 2016 with the Essentials role requires you to use the wizard from the Dashboard. You need to release the domain and add it back with the new certificate. That will make all changes also for VPN and RDP.
Thank you as always Mariette for your answer. The GoDaddy setup information was missing a few critical items and in addition to the step you mentioned, was what caused my problems.
I appreciate the community you are supporting especially since only a few of my clients have servers...I don't get enough ongoing experience.
Your browser doesn't have Flash, Silverlight or HTML5 support.