Jump to content

How to get my SSTP working

shalar
By shalar
in Networking
 Share
Posted

I made an previous topic here where i wasnt really clear in what i was doing and what i wanted to do.

I hope i can do that better in this topic :)

I try to make an SSTP Connection to my Server in Germany.

Tried alot of stuff but everytime i fall over the following error:
Can't connect to VPN

A certificate chain processed , but terminated in a root certificate which is not trusted by the trust provider.

 

I already made around 3 times my own certificate, what the hell i can do wrong about this and is there any loggin where i can figure this out?

 

Thanks in forward.

 

Link to comment
Share on other sites
Link to post
Share on other sites
Posted

You need a certificate that's trusted on both ends. Ideally, you should get something like a Let's Encrypt certificate that matches the domain name of the server in Germany (i.e. remoteserver.de) and connect to that exact domain name (not just an IP). You can't use a self signed certificate for SSTP.

 

Edit:

 

if you don't want or cannot use such a certificate, use OpenVPN or L2TP instead.

PC Specs - AMD Ryzen 7 5800X3D MSI B550M Mortar - 32GB Corsair Vengeance RGB DDR4-3600 @ CL16 - ASRock RX7800XT 660p 1TBGB & Crucial P5 1TB Fractal Define Mini C CM V750v2 - Windows 11 Pro

 

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
  • Author
2 minutes ago, NelizMastr said:

You need a certificate that's trusted on both ends. Ideally, you should get something like a Let's Encrypt certificate that matches the domain name of the server in Germany (i.e. remoteserver.de) and connect to that exact domain name (not just an IP). You can't use a self signed certificate for SSTP.

So i need to get one from his own certificated and adjust that 1 if i am correct, you know maybe one working guide?

Already have Duckdns.org Running for this

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
1 minute ago, shalar said:

So i need to get one from his own certificated and adjust that 1 if i am correct, you know maybe one working guide?

It's not your own server then? Because all that server needs is to have a valid SSL certificate that's signed by a trusted root CA. Once you connect to the domain name the certificate is issued for there shouldn't be any verification issues.

PC Specs - AMD Ryzen 7 5800X3D MSI B550M Mortar - 32GB Corsair Vengeance RGB DDR4-3600 @ CL16 - ASRock RX7800XT 660p 1TBGB & Crucial P5 1TB Fractal Define Mini C CM V750v2 - Windows 11 Pro

 

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
  • Author

It is my own indeed!

I can also open everything in it but still get the message, even followed various guides but gonna try it again for now, maybe i forgot something yesterday  :/

Gets me frustrated because i did everything the guide told me :/ 

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
  • Author

Its working for now!

Only thing now is, i dont get any internet over it, so a new challenge for me to find out :)

Link to comment
Share on other sites
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Networking

×