We currently have an SSTP server (running on Windows Server 2008 R2 but it is being migrated to Windows Server 2016). At the moment, the server is configured using a wildcard certificate for one of our domains, lets call it *.olddomain.com.
As you can imagine from the example, the domain is old and we've already got a new certificate: *.newdomain.com.
The VPN is accessible via DNS entries for both of these domains:
- vpn.olddomain.com
- vpn.newdomain.com
Unfortunately, it seems that the SSTP configuration in Windows permits me to set up only one certificate. I COULD just switch to the new one, but then every client which hasn't updated the hostname will likely have issues connecting (the publisher of these certificates is publicly trusted, but I don't think a client accessing olddomain.com will be too happy to get a certificate for newdomain.com).
Is there a way to have both certificates running at the same time so that both hostnames can be used?
0 Answers