question

AndrejStruhacka-8388 avatar image
0 Votes"
AndrejStruhacka-8388 asked IkeMurphy-8273 commented

VpnClientRootCertificateDataInvalid : Point-to-site

Hello,

We have a Point-to-site configuration set up in the Azure Virtual network gateway and there are uploaded Root certificates.
Two certificates expired. I would like to remove them from the portal and replace them with new ones. It is not possible. Although I can remove them, the save option isn´t available. Also it isn´t possible to save a new certificate.


I tried to remove expired certificates through a powershell command:

az network vnet-gateway root-cert delete --resource-group MyGroup --name MyCert1 --gateway-
name MyGateway

There was an error message:


(VpnClientRootCertificateDataInvalid) Data for certificate
/subscriptions/XYZ/resourceGroups/MyGroup/providers/Microsoft.Network/virtualNetworkGateway
s/MyGateway/vpnClientRootCertificates/MyCert2 is invalid.

There was another error message that the second expired certificate is wrong.

Could you help me with this problem?
Thanks

azure-vpn-gateway
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@AndrejStruhacka-8388, Please do provide the region and gateway SKU you are working with for further analysis.

0 Votes 0 ·
suvasara-MSFT avatar image
0 Votes"
suvasara-MSFT answered

@AndrejStruhacka-8388, This looks like an internal product bug. This requires a deeper investigation, so if you have a support plan, I request you file a support ticket, else please do let us know, we will try and help you get a one-time free technical support. In this case, could you send an email to AzCommunity[at]Microsoft[dot]com referencing this thread and your subscription id.

Thank you for your cooperation on this matter and look forward to your reply.


Please do not forget to "Accept the answer" wherever the information provided helps you to help others in the community.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

IkeMurphy-8273 avatar image
0 Votes"
IkeMurphy-8273 answered IkeMurphy-8273 commented

We are having the exact same problem. It's complaining about a bad existing cert while trying to create one, and we can't delete it (or any of them). The save is gray and when you navigate away it says the changes will be lost, but like I said you can't save. It's been working for years. It worked a month ago.

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@IkeMurphy-8273 , Please do provide the region and gateway SKU you are working with for further analysis.

0 Votes 0 ·

It's US West Basic

0 Votes 0 ·
AndrejStruhacka-8388 avatar image
0 Votes"
AndrejStruhacka-8388 answered

Thanks for help. I send support ticket.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.