locked
Azure P2S client Certificates RRS feed

  • Question

  • hello,  for every concurrent P2S connection, do I have to create a client certificate for each client or I can distribute 1 client certificate across multiple users in order to connect? 

    thanks in advance!

    Friday, May 10, 2019 1:05 PM

Answers

  • Hi Harryg13,

    Best practice is to have one certificate of each user that would be easy to manage the permissions and certificates. When the user leaves the project or organization you can revoke the individual user certificate.

    • Proposed as answer by Anwesh Patukuri Friday, May 10, 2019 1:23 PM
    • Marked as answer by harryg13 Friday, May 10, 2019 1:28 PM
    Friday, May 10, 2019 1:23 PM

All replies

  • Hi Harryg13,

    Best practice is to have one certificate of each user that would be easy to manage the permissions and certificates. When the user leaves the project or organization you can revoke the individual user certificate.

    • Proposed as answer by Anwesh Patukuri Friday, May 10, 2019 1:23 PM
    • Marked as answer by harryg13 Friday, May 10, 2019 1:28 PM
    Friday, May 10, 2019 1:23 PM
  • Hi Harryg13,

    Best practice is to have one certificate of each user that would be easy to manage the permissions and certificates. When the user leaves the project or organization you can revoke the individual user certificate.

    ok i understand that, in case of single certificate for multiple users, will the VPN work without issues?(i know it is bad security practice) 
    Friday, May 10, 2019 1:25 PM
  • Yes it works but as you mentioned this is a bad security practice
    Friday, May 10, 2019 1:27 PM
  • ok thanks!
    Friday, May 10, 2019 1:28 PM