Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You have a computer named Computer1 that has a point-to-site VPN connection to an Azure virtual network named VNet1. The point-to-site connection uses a self-signed certificate.
From Azure, you download and install the VPN client configuration package on a computer named Computer2.
You need to ensure that you can establish a point-to-site VPN connection to VNet1 from Computer2.
Solution: You modify the Azure Active Directory (Azure AD) authentication policies.
Does this meet this goal?
Click on the arrows to vote for the correct answer
A. B.B
No, modifying the Azure AD authentication policies will not meet the goal of establishing a point-to-site VPN connection to VNet1 from Computer2.
The goal of establishing a point-to-site VPN connection to VNet1 from Computer2 requires that Computer2 can authenticate itself using the same self-signed certificate used by Computer1. To achieve this, you need to import the self-signed certificate onto Computer2.
Here are the steps you can follow:
Export the self-signed certificate from Computer1. You can do this by using the Certificates snap-in for the Microsoft Management Console (MMC) on Computer1.
Copy the exported certificate file to Computer2.
Import the certificate onto Computer2. You can do this by double-clicking the certificate file and following the import wizard.
Configure the VPN client on Computer2 to use the imported certificate for authentication.
Once you have completed these steps, you should be able to establish a point-to-site VPN connection to VNet1 from Computer2 using the self-signed certificate.
Therefore, the correct solution is to import the self-signed certificate onto Computer2, not modify the Azure AD authentication policies.