Change a vpn root certificate RRS feed

  • Question

  • I need to change the root certificate of the vpn that is used as virtual network for my virtual machines, but I haven't found any documentation regarding how to do it and the implications associated with the change, will it impact the communication among the virtual machines? Or the only implication is that I need to reissue new client certificates. 

    Any comments will be greatly appreciated.



    Friday, May 15, 2015 2:21 AM


  • Greetings!

    You may proceed with changing the root certificate for P2S VPN. Yes, as you rightly said, you have to re-issue new client certificates.

    1. Delete all Root Certs from the Azure Network Certificate Store.

    2. Delete all Root and Client Certs in Certificate Manager (local system).

    3. Remove the VPN client from the workstations.

    4. Delete Client Certs from workstations Certificate Manager.

    Now, for creating root certificate and re-issuing client certificates, you may refer: http://blogs.technet.com/b/cbernier/archive/2013/08/21/windows-azure-how-to-point-to-site-vpn-walk-through.aspx

    Hope this helps!

    Thank you,


    Friday, May 15, 2015 7:40 AM