What kind of certificate is required on client and server side?
On the server side a machine certificate is required in order for SSTP based connection to go through. The client gets this certificate as part of SSL hand-shake and validates the same. This certificate should be with EKU as server authentication. On the client side, a certificate is required inside the trusted root CA machine store which goes back to the certificate chain on the server certificate. This will be used to validate the server certificate in addition to certificate validity, certificate expiry, certificate EKU and certificate revocation check.
Related Questions
- If accessing the Project Server 2007 server via the Project Web Access Client, do they need additional software if accessing locally, ie. over the local LAN?
- How do I install the PowerEdge Expandable RAID Controllers Power Console remote client utility on a console server running Windows NT?
- Is the CREN certificate a client side or server side certificate?
