Azure - Point To Site Error 798

Daniel Annable 1 Reputation point
2020-09-02T17:51:14.917+00:00

A client of ours asked for assistance with a point to site connection. They provided an xml file and a cer file. I imported the certificate and setup the vpn connection based on the info in the xml file.

Getting this error message: A certificate could not be found that can be used with this Extensible Authentication Protocol. (Error 798)

The machine is windows 7. I have enabled TLS 1.2, not sure if that is required.

Hoping someone can point me in the right direction. Let me know if any additional information is required.

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,347 questions
0 comments No comments
{count} votes

6 answers

Sort by: Most helpful
  1. Sumarigo-MSFT 43,001 Reputation points Microsoft Employee
    2020-09-03T10:39:53.31+00:00

    @Daniel Annable There are several potential cause of this issue, so could you please help me with the below answer:

    1. What kind of root certificate did you use? Enterprise certificate, or generate a self-signed certificate.
    2. Have you uploaded the the root certificate public certificate data?
    3. Is the installed in the correct directory in Certmgr 'Certificates - Current User\Personal\Certificates'?

    Based on the error message have you referred to the troubleshooting article

    There is also similar thread discussion in SO forum, refer to the suggestion which may give you some idea on your query.

    I assume issue may be related to certificate, please cross check once: https://learn.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-certificates-point-to-site

    Hope this helps!Kindly let us know if the above helps or you need further assistance on this issue.

    -------------------------------------------------------------------------------------------------------------------------------------------------------

    Please don’t forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.

    0 comments No comments

  2. Daniel Annable 1 Reputation point
    2020-09-03T20:48:33.287+00:00

    Hi Sumarigo,

    1. What kind of root certificate did you use? Enterprise certificate, or generate a self-signed certificate. The customer has three files. vpnserverroot.cer, vpnsettings.xml and vpnclientsetupx86.exe. It displays as a digicert global root ca.
      I installed the certificate under current user, personal, certificates.
    2. Have you uploaded the the root certificate public certificate data?
      I have installed the certificate if that is what you are asking?
    3. Is the installed in the correct directory in Certmgr 'Certificates - Current User\Personal\Certificates'?

    I believe so, see attached image.
    22497-image.png


  3. Matthew Danihy 1 Reputation point
    2020-10-01T20:33:42.55+00:00

    I get this same error with Windows 10.

    All the suggestions from other sites have not worked.

    0 comments No comments

  4. Matthew Danihy 1 Reputation point
    2020-10-01T20:46:28.407+00:00

    I Should note that I am using SSTP because we have to support Windows 7, which they connect fine.

    0 comments No comments

  5. Eric 1 Reputation point
    2022-04-27T16:30:48.16+00:00

    Yes Azure keep having issues that can not be corrected by Azure support.

    0 comments No comments